Endpoint Engineering Lead

McGraw Hill is dedicated to transforming education through digital learning experiences. The Digital Workplace Endpoint Engineering Lead is responsible for leading the design, implementation, and lifecycle management of enterprise endpoint platforms, ensuring stability and security across the organization while providing technical leadership to engineering teams.

Responsibilities:

• Lead and mentor a team of endpoint engineers, including specialists in Windows and Apple ecosystems, and provide strategic direction and technical oversight across the full endpoint portfolio
• Bring deep Jamf Pro expertise while maintaining working knowledge of Windows endpoint management to effectively guide, review, and support the work of Windows-focused team members
• Establish technical standards, configuration baselines, and best practices across macOS and Windows platforms
• Serve as the senior escalation point for complex endpoint issues across both Apple and Windows ecosystems
• Design, administer, and continuously optimize Jamf environment and full Apple device lifecycle management from zero-touch enrollment to offboarding
• Oversee and manage macOS, iOS, and iPadOS configuration profiles, smart groups, policies, patch management, and compliance frameworks within Jamf Pro
• Provide oversight and strategic guidance for Windows endpoint management and Intune-based workflows managed by your team
• Integrate endpoint platforms with identity, security, and collaboration systems including Okta, Entra ID/Azure AD
• Drive modernization of Apple endpoint management through advanced Jamf Pro workflows and Jamf Connect
• Collaborate with Windows engineers on modernization efforts including Autopilot, Intune compliance policies, and cloud-native device management
• Develop and maintain Bash and Python scripts to automate deployment, software updates, compliance reporting, and self-service workflows
• Evaluate and implement emerging technologies including AI-assisted endpoint management and experience analytics tools
• Partner with Cybersecurity teams to enforce macOS security baselines, CIS benchmarks, and data protection standards through Jamf Pro
• Provide leadership oversight on Windows security baselines and Intune compliance policies
• Manage FileVault encryption and compliance monitoring across the Apple fleet
• Conduct periodic audits, remediation workflows, and configuration drift analysis across both platforms
• Partner with Service Desk, Infrastructure, and Application teams to enhance the end-user experience across Apple and Windows environments
• Develop documentation, configuration standards, and knowledge base content for cross-team enablement
• Mentor team members, fostering cross-platform awareness and helping Windows-focused engineers grow understanding of macOS management and vice versa

Requirements:

• Bachelor's degree in Computer Science, Information Systems, or related field (or equivalent experience)
• 7+ years of experience in endpoint engineering or EUC roles, with at least 2 years in a technical leadership position
• Deep technical expertise in: Jamf Pro at an advanced/Jamf 400 level, macOS deployment, configuration profiles, and compliance management
• Proficiency in automation and scripting (Bash, Python)
• Familiarity with Okta and Entra ID integration with Jamf
• Working knowledge of Microsoft Intune and Windows endpoint management
• Jamf Certified Expert (Jamf 400) or equivalent — strongly preferred
• Experience managing large-scale Apple fleets (500+ devices) in enterprise environments
• Knowledge of zero-touch provisioning via Apple Business Manager (ABM) and Automated Device Enrollment (ADE)
• Familiarity with Microsoft Intune, Autopilot, and Windows compliance frameworks
• Experience in hybrid environments (on-prem + cloud)
• Proven ability to lead cross-functional endpoint teams and mentor technical staff across platforms