Apply on Employer Site

PeopleCaddie · 4 hours ago

Mac Endpoint Engineer

Downers Grove, IL

Contract

Onsite

Mid, Senior Level

$70/hr - $80/hr

3+ years exp

PeopleCaddie is partnering with a large accounting firm to find a Mac Endpoint Engineer. This role involves designing and operating a modern Intune-managed macOS environment, focusing on zero-touch enrollment, app packaging, and security compliance.

Recruiting

H1B Sponsor Likely

Responsibilities

Design/operate zero-touch enrollment with ABM + ADE (PreStage through post-enrollment fixes)

Build a consistent first sign-in experience using PSSO + Intune

Improve enrollment flows, bootstrap content, and post-enrollment automations

Lead macOS app packaging for Intune (PKG/DMG + pre/post scripts, detection rules, dependencies, retries, uninstall logic)

Create a scalable third-party app deployment model with staged rings, rollback plans, and change control

Collaborate with Packaging/QA on versioning, testing, and release notes

Manage Intune baseline configs & compliance policies; suggest UX/reliability improvements

Enforce CIS macOS benchmark controls (macOS 26+); own configuration/enforcement, partner with InfoSec

Integrate/support: Entra ID, Defender for Endpoint (DLP), CrowdStrike, CyberArk EPM, Qualys, GlobalProtect ZTNA

Automate via scripting (bash/zsh/Python; PowerShell for Graph) – provisioning, remediations, health checks, reporting

Deliver actionable Intune dashboard metrics (enrollment success, sign-in time, compliance drift, packaging SLAs)

Write KB articles/how-tos; transfer knowledge to Support; provide occasional Tier 3 guidance (no on-call)

Partner with Identity, Security, Networking, and Support to prepare for go-live and scale across US users

Contribute to standards, guardrails, and SOPs for long-term stability

Qualification

MacOS MDMIntune packagingZero-touch enrollmentScripting (bash/zsh/Python)CIS controls enforcementDefender for EndpointCrowdStrikeCyberArk EPMQualysGlobalProtectKnowledge-transfer skillsDocumentation skills

Required

3–5+ years enterprise macOS MDM (Intune preferred)

Strong Intune macOS packaging expertise (PKG/DMG, scripts, detection, rings, rollback)

Hands-on ADE zero-touch + PSSO implementation

Scripting: bash/zsh/Python (PowerShell/Graph as needed)

Experience enforcing CIS controls via Intune profiles/policies

Familiarity with Defender, CrowdStrike, CyberArk EPM, Qualys, and GlobalProtect

Excellent documentation & knowledge-transfer skills

Preferred

Self-healing remediations / drift correction

iOS/iPadOS in Intune (bonus)

Entra ID Conditional Access for macOS

Current Apple management trends (PSSO, macOS security/privacy)

Company

PeopleCaddie

The talent cloud for the highly-skilled gig economy.

Founded in 2016

Chicago, Illinois, USA

11-50 employees

https://www.peoplecaddie.com/

H1B Sponsorship

PeopleCaddie has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2024 (1)

2022 (1)

Funding

Current Stage

Early Stage

Leadership Team

Tim Rowley

Founder, CTO and COO

Company data provided by crunchbase