Job description

Cloud Engineer - macOS Endpoint Management
Location: Remote (West Coast hours)
Position Overview
We are seeking a dynamic Cloud Engineer specializing in endpoint management to enhance the Nautilus experience for the U.S. Navy. This role focuses on designing, implementing, and maintaining secure endpoint solutions across diverse platforms, with a significant emphasis on macOS configuration and security, while ensuring compliance with military standards and security requirements.
Key Responsibilities
Cloud & Endpoint Management

Design and implement cloud-based endpoint management solutions using Microsoft Azure and Intune.
Set, manage, and enforce configurations on macOS devices primarily through shell scripting orchestrated via Microsoft Intune.
Integrate and manage macOS devices using Apple Business Manager for zero-touch deployment.
Manage the software lifecycle for macOS, including application packaging, deployment, and updates through Microsoft Intune and the Company Portal.
Develop and maintain endpoint security policies across a multi-platform environment.
Monitor and optimize endpoint performance, security posture, and compliance metrics.

Security & Compliance

Implement Security Technical Implementation Guides (STIG) across all managed endpoints, with a specific focus on the macOS platform.
Create and enforce security policies in accordance with DoD and Navy cybersecurity standards.
Conduct security assessments and vulnerability management for endpoint devices.
Ensure compliance with federal regulations including FISMA, NIST, and DoD directives.

Multi-Platform Support

macOS: Engineer the configuration and security of macOS endpoints. Set and manage device configurations using shell scripts orchestrated with Microsoft Intune. Manage the device lifecycle through Apple Business Manager. Implement and enforce DoD standards and security practices on the macOS platform.
Windows 11: Configure, deploy, and manage Windows 11 enterprise environments.
Red Hat Enterprise Linux & Ubuntu: Administer Linux systems with a focus on security hardening and automation.

Policy Development & Implementation

Create comprehensive endpoint management policies using Azure Active Directory and Intune.
Develop automated deployment scripts and configuration management workflows, especially with shell scripting for macOS.
Design and implement conditional access policies and zero-trust security models.
Establish monitoring and reporting frameworks for endpoint compliance.

Required Qualifications
Technical Skills & Experience

Essential: 3+ years of experience in cloud engineering or endpoint management.
Essential: Deep, hands-on experience managing macOS devices at scale using Microsoft Intune.
Essential: Strong proficiency in shell scripting to set, manage, and automate configurations on macOS.
Essential: Demonstrable experience with Apple Business Manager, including device enrollment (DEP) and app/book purchasing (VPP).
Essential: Experience with software deployment and management on macOS using Intune's Company Portal.
Essential: Proven experience implementing and enforcing DoD standards (STIGs) and security best practices on the macOS platform.
Essential: Experience with Microsoft Azure cloud services and architecture.
Preferred: PowerShell scripting experience.
Preferred: Experience with Windows 11 and/or Linux (RHEL, Ubuntu) endpoint management.