IT Engineering Manager (Client Platform Engineering)
New
Almost anywhere within the country of employmentFull-TimeManager
Salary142000 - 192000 CAD per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 5+ years
- Required Skills
- PythonBashTerraformAnsibleGoogle Workspace
Requirements
- 5+ years of hands-on experience managing macOS (and ideally other endpoints) at scale with enterprise MDM tools - Jamf Pro expertise required (Jamf 300+ level).
- Strong scripting capabilities in Bash, with fluency in a second language like Python; ability to programmatically integrate with RESTful APIs (Jamf API, Okta API, etc.).
- Proven proficiency in automation / infrastructure-as-code tools like Terraform, Ansible, or similar in an IT context.
- Experience with Windows Intune and Windows Endpoint Management.
- Deep understanding of enterprise security practices for endpoints, including vulnerability/patch management, enforcing least privilege, encryption, and compliance frameworks.
- Experience building and managing package/software distribution pipelines, with tools like AutoPkg, Jamf, or others.
- Exceptional troubleshooting skills and ability to debug complex endpoint issues; capable of representing the IT team in high-severity escalations.
- Excellent cross-functional communication skills with a collaborative mindset.
- A positive, growth-oriented attitude, with strong written communication: documentation, runbooks, dashboards, and process guides.
- Prior experience serving as a technical mentor or functional lead in a high-growth or enterprise environment is strongly preferred.
- Equivalent practical experience or a Bachelor’s degree in a related field.
Responsibilities
- Administer and scale macOS device management using Jamf Pro, ensuring endpoints meet company compliance standards (e.g., encryption, OS patching, configuration profiles, application management).
- Guide architectural decisions to ensure endpoint management can easily scale with the company.
- Drive key technical initiatives such as permission automation, third-party patching, silent updates, stability improvements, and streamlined device deployment.
- Build automation and infrastructure-as-code pipelines using tools like Terraform (or similar), Bash/Python scripting, and Jamf/Okta/MDM APIs to minimize manual work and create “zero-touch” provisioning workflows.
- Manage enterprise-grade software and package deployment, using tools like AutoPkgr or equivalent for packaging and silent rollout of updates at scale.
- Implement and refine endpoint change control processes, with communication, testing, rollback plans, and compliance tracking. Create dashboards and reporting for visibility into compliance, patch levels, and device health.
- Collaborate closely with Security, Support, Engineering, and IT to enforce policies (e.g. least-privilege), onboard security agents (AV, EDR, disk encryption), and integrate devices with Okta SSO, Oomnitza, Google Workspace, and other monitoring tools.
- Serve as the escalation tier for complex endpoint issues—troubleshoot deep macOS, hardware, networking, or software issues and act as a knowledge source for IT Support.
- Mentor junior engineers—share expertise, set best practices, and help elevate the team’s Jamf, scripting, and automation capabilities.
- Explore and evaluate new endpoint-management and automation technologies, run POCs, and recommend adoption to improve platform efficiency, security, and user experience.
- Work directly with Developer Productivity to support the unique needs of Affirm’s engineers.
View Full Description & ApplyYou'll be redirected to the employer's site
