Aya Healthcare

Manager, Enterprise Device Management

Aya Healthcare

full-time

Posted on:

Origin:  • 🇺🇸 United States

Visit company website
AI Apply
Apply

Salary

💰 $160,000 - $175,000 per year

Job Level

Mid-LevelSenior

Tech Stack

AssemblyMacOSServiceNow

About the role

  • Define and deliver the device management roadmap aligned to enterprise security, compliance, and user experience goals.
  • Own Intune policies and profiles (enrollment, configuration, compliance, conditional access signals) across Windows and macOS.
  • Standardize gold images/baselines; manage Autopilot/ABM flows; ensure clean join/retire processes.
  • Design patch rings and cadence; drive OS/application update compliance; coordinate comms and maintenance windows.
  • Use Defender TVM to reduce exposure scores, track and close vulnerability backlogs with measurable SLAs.
  • Enforce encryption (BitLocker/FileVault), local admin controls/LAPS/EPM, and hardening baselines; tune MDE (EDR/ASR).
  • Collaborate with InfoSec on detections, incident response, exceptions, and audits.
  • Run day-to-day operations through ServiceNow: queues, SLAs, problem management, change approvals, and post-incident reviews.
  • Provide clear user comms and self-service guides to improve first-contact resolution.
  • Publish KPIs (compliance, exposure, MTTR, provisioning success rate); use automation to remove manual steps and reduce variance.
  • Manage vendor relationships and licensing (Intune/MDE and related tools); budget input and forecast.

Requirements

  • Bachelor’s in Information Systems, Computer Science, Engineering, or related field or equivalent experience.
  • 5+ years in endpoint/device management with 2+ years leading people or serving as a technical team lead.
  • Deep experience with Microsoft Intune (Windows/macOS), Microsoft Defender for Endpoint, and Windows Update for Business/Autopatch; working knowledge of macOS update management.
  • Solid grasp of identity & access concepts and how device compliance ties into Entra ID/Conditional Access.
  • Proficiency with PowerShell and comfort with Microsoft Graph/KQL for automation and reporting.
  • Strong stakeholder management and communication skills; able to translate risk and technical detail into business outcomes.
  • Experience operating within ITIL-style processes (incident, change, problem) and ticketing in ServiceNow (or equivalent).
  • Preferred: Experience with endpoint privilege management (e.g., LAPS/EPM), certificate management, and app packaging at scale.
  • Preferred: Exposure to compliance frameworks (e.g., SOC 2, ISO 27001, HIPAA) and endpoint audit readiness.
  • Preferred: Reporting/visualization in Power BI; scripting for macOS (zsh/bash) and device management on Apple platforms (ABM/ASM).