Edwards Lifesciences

Endpoint & Device Management Architect

Edwards Lifesciences

full-time

Posted on:

Location Type: Remote

Location: Remote • 🇨🇿 Czech

Visit company website
AI Apply
Apply

Job Level

SeniorLead

Tech Stack

AndroidCyber SecurityiOSJamfMacOS

About the role

  • Own and govern the endpoint environment including desktop, laptop, VDI and mobile device, acting as the single point of accountability for architecture, standards, and operational health of the endpoint ecosystem.
  • Govern and oversee all changes to endpoint management tooling, configurations, policies, and processes — review and approve change requests, ensuring they follow best practices, align with security requirements, and are well-tested before deployment.
  • Chair or participate in change advisory processes for endpoint-related initiatives, balancing business needs with stability and user experience.
  • Define and maintain environment baselines (OS builds, configurations, security settings, compliance rules) and enforce drift detection / remediation processes.
  • Define and maintain endpoint management architecture & roadmap, covering Windows and Apple device endpoints (laptop and mobile), including OS provisioning, imaging, zero-touch deployment, BIOS updates, build vs BYOD policies, lifecycle management.
  • Support information security directives by aligning to technical standards and best practices for endpoint security including hardening, vulnerability and patch management, asset management.
  • Oversee tool evaluation, selection, integration and optimization device management at scale, ensuring efficient operations, cost-effectiveness, and alignment with cybersecurity policies.
  • Ensure endpoint fleet health: define and monitor metrics (e.g. compliance, patching status, device inventory accuracy, proactive endpoint incident identification), and set up alerts / dashboards.
  • Provide escalation support for advanced, cross-platform endpoint issues and architecture-level troubleshooting.
  • Collaborate with security, network, infrastructure, operations, ServiceDesk, procurement, and business stakeholders to ensure endpoint strategies align with broader corporate goals.
  • Mentor and guide the SCCM / Intune / Jamf teams; define SOPs, documentation, runbooks, training for staff.
  • Stay up to date with industry trends, emerging endpoint technologies, platform changes (Windows, macOS, iOS, Android); evaluate and recommend adoption where beneficial.
  • Conduct cost/benefit analyses, total cost of ownership, licensing, and help manage vendor relationships for endpoint tools and services.

Requirements

  • 7-10+ years of experience in endpoint device management in large enterprises (20,000+ endpoints preferred)
  • Demonstrated technical expertise in Windows endpoint troubleshooting and management: SCCM / MECM, Intune / Microsoft Endpoint Manager, imaging / OS deployment tools, GPO / policy management, Autopilot or similar provisioning
  • Deep technical expertise with Apple device management: Jamf (Pro or similar), Apple Business Manager, macOS / iOS / iPadOS workflows for provisioning, security, update management
  • Strong understanding of endpoint security: threat surface, hardening, EDR, encryption, compliance, vulnerability management etc.
  • Experience with automation and scripting a must
  • Experience designing or leading architecture / modernization projects (migrations, tool consolidation/integration)
  • Strong understanding and alignment to Microsoft Privileged Access strategy and zero trust principles
  • Strong communication skills: able to present to senior management; produce technical designs & documentation; mentor engineers
  • Experience with vendor evaluation, licensing, cost management
  • Relevant certifications are a plus (Microsoft Endpoint, Modern Workplace, Jamf, CISSP, CISM, etc.)
Benefits
  • Health insurance
  • Retirement plans
  • Paid time off
  • Flexible work arrangements
  • Professional development opportunities

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
endpoint device managementWindows endpoint troubleshootingSCCMIntuneimaging toolsGPO managementJamfmacOS managementautomationscripting
Soft skills
communication skillsmentoringcollaborationproblem-solvingleadership
Certifications
Microsoft EndpointModern WorkplaceJamfCISSPCISM