Job Description
Manager, Enterprise Endpoint Architecture and Modern Device Strategy Step into a high impact leadership role at the center of enterprise workplace technology. This position is responsible for shaping the architecture, standards, and long term strategy for end user computing across a global organization. In today’s hybrid world, endpoints are no longer just laptops and phones. They are critical infrastructure. From Windows and macOS devices to mobile platforms, industrial scanners, and enterprise printing, this role ensures every device is secure, scalable, compliant, and optimized for the employee experience. Work Model This is a hybrid opportunity requiring regular onsite collaboration, with three or more days per week in the office. Role Overview The Manager of End User Device Architecture leads enterprise level design and governance for modern endpoint platforms. You will define the technical direction for device lifecycle management, guide key technology decisions, and ensure smooth transition of new capabilities from transformation initiatives into operational support teams. This role sits at the intersection of architecture, security, and global IT operations, building the foundation for a modern, Zero Trust aligned endpoint ecosystem. Key Areas of Ownership Enterprise Standards and Technology Roadmaps Establish and maintain global device architecture standards across operating systems, hardware categories, and endpoint types. Create reference architectures, versioned baselines, and multi year roadmaps that align with business and IT strategy. Define guardrails for device provisioning, configuration management, application deployment, identity integration, and lifecycle planning from procurement through retirement. Modern Endpoint Management with Intune and MECM Architect Microsoft Intune enrollment, compliance, configuration, and application delivery across Windows, macOS, iOS, and Android. Ensure effective coexistence and transition planning between Intune and MECM environments. Design Autopilot and remote provisioning scenarios that support hybrid workforces and off network devices. Build packaging and patching frameworks including deployment rings, pilot strategies, rollback processes, and device experience measurement. Define telemetry and analytics models using tools such as Endpoint Analytics or Nexthink to improve performance and reliability. Endpoint Security and Compliance by Design Embed Zero Trust principles into endpoint architecture through posture enforcement, Conditional Access, encryption, and threat protection. Integrate Defender AV and EDR, BitLocker, LAPS, and privilege management into standardized device baselines. Partner closely with cybersecurity teams to manage controls, exceptions, and audit readiness. Develop compliance evidence models that support regulatory requirements and enterprise governance. Operational Handoff and Lifecycle Transition Own the transition of endpoint capabilities from project delivery into steady state operations. Create runbooks, RACIs, and standardized processes for support teams and managed service partners. Reduce technical debt through consolidation of legacy configurations, retirement of redundant tools, and establishment of consistent golden images and profiles. Governance, Stakeholder Alignment, and Global Collaboration Lead architecture reviews, prioritization discussions, and decision forums with project management and business stakeholders. Communicate trade-offs and technology direction across regions and time zones, including North America, South America, and Europe. Contribute to enterprise governance frameworks that guide design and build activities across IT transformation programs. Vendor Strategy and Managed Service Integration Define technical requirements for RFPs and evaluate endpoint vendors, hardware partners, and service providers. Drive value through architecture decisions that optimize performance, cost, and operational scalability. Ensure compatibility with Service Desk workflows, ITSM processes, and asset management models. Innovation and Thought Leadership Stay ahead of emerging trends in endpoint computing, automation, and AI assisted device management. Bring forward pragmatic recommendations that improve employee experience, reduce risk, and modernize operations. What You Bring Seven or more years of experience in endpoint engineering, EUC architecture, or modern workplace platform leadership. Deep hands on expertise with Microsoft Intune, MECM, Autopilot, Entra ID, Conditional Access, Defender, and BitLocker. Strong knowledge of managing Windows 10 and 11, macOS,