Sr. IT Infrastructure Endpoint Engineer

EverOps is an AI-native platform operations company focused on delivering outcomes - not tickets. Our TechPods embed directly with customers to operate, scale, and modernize their platforms across cloud, security, and IT.

We’re looking for an Endpoint Engineer to help design and operate modern endpoint environments across macOS and Windows. This role sits at the intersection of endpoint engineering, identity, and security, with a strong focus on Intune and Iru to drive automation, visibility, and user experience.

Most companies are stuck with fragmented endpoint tooling, reactive support models, and inconsistent security enforcement.

You’ll help our customers evolve to a modern, Zero Trust-aligned endpoint strategy, standardizing device lifecycle management, improving end-user experience, and tightly integrating identity, security, and device posture.

This means balancing:

• Security vs. usability

• Automation vs. flexibility

• Standardization vs. real-world edge cases

As a Senior Infrastructure Endpoint Engineer, you will join our U.S.-Based Virtual Operating Center, working within a dynamic team to own and evolve enterprise MDM services across Windows and MacOS environments. Your primary mission will focus on modernizing user experience architectures, maturing lifecycle automation, strengthening endpoint postures, and integrating automated workflows to improve security, scalability, and user experience.

You will be expected to lead by example - architecting solutions within Intune, Iru/Jamf, designing and building automated provisioning workflows tied to Autopilot or ABM.

• Design, implement, and manage endpoint platforms using Microsoft Intune and Iru

• Own device lifecycle management (onboarding, offboarding, compliance, and refresh)

• Implement automated provisioning with Autopilot and Apple Business Manager (DEP)

• Configure and enforce industry-standard hardening baselines for macOS and Windows via Intune/Iru

• Manage vulnerability exposure using CrowdStrike Spotlight or similar, and drive remediation SLAs

• Own CrowdStrike Falcon platform administration, including sensor deployment, policy configuration, prevention policy tuning, and exclusion management

• Lead alert triage and investigation workflows, partnering with the security team on escalations and response

• Build and maintain host groups, device policies, and containment workflows

• Administer Server Patch and Policy Management through WSUS/AWS SSM

• Integrate endpoint platforms with Okta, Entra ID, and other identity providers

• Automate endpoint configuration and application lifecycle using scripting (PowerShell, Bash, Python)

• Troubleshoot complex endpoint issues across OS, network, and identity layers

• Support secure access workflows (VPN, cert-based Wifi authentication)

• Build and maintain documentation, runbooks, and standards

• Partner with Security, IAM, and Cloud teams to align endpoint strategy with broader platform architecture

• Contribute to continuous improvement within your team and across EverOps’ customer base

• 4+ years of experience in endpoint engineering, IT infrastructure, or related field

• Strong hands-on experience with:

  • Microsoft Intune

  • Iru (or Jamf)

  • macOS and Windows administration

• Solid understanding of endpoint security (patching, compliance, EDR, vulnerability management, and alert triage)

• Experience with Okta, Entra ID (Azure AD), or similar identity platforms

• Familiarity with Zero Trust principles and conditional access

• Scripting experience (PowerShell, Bash, or Python)

• Strong troubleshooting skills across endpoint, identity, and network layers

• Working knowledge of AWS and/or Azure environments

• Microsoft Autopilot and Apple Business Manager

• Familiarity with hybrid identity (Active Directory + Entra ID, GPOs)

• Hands-on CrowdStrike Falcon administration

• Experience with Falcon modules beyond EDR such as Identity and vulnerability management

• Experience with configuration management tools (Ansible, Puppet, Chef)

• Experience with infrastructure as code, including Terraform

• Experience operating in high-growth or SaaS environments

• Network troubleshooting experience, including basic concepts of DNS/DHCP/network traffic flow and related protocols

• Experience with Nexthink or similar endpoint analytics/DEX tools

• 100% Remote Workplace: We’ve been remote since Day 1!

• Unlimited Paid Time Off.

• Equity: Become a true owner of the company.

• 401k with company contribution and sponsored healthcare.

• Professional Growth: Access to training and certification programs to accelerate your career.