macOS Enterprise Architect Multi-Tenant Strategy & Endpoint Lifecycle

Job Title: macOS Enterprise Architect Multi-Tenant Strategy & Endpoint Lifecycle
Location: Remote (U.S.-based)
Employment Type: Contract (12+ months, with potential for extension)

About the Opportunity
We are a premier technology consultancy supporting a Fortune 50 enterprise technology organization in the execution of high-impact, strategic transformation initiatives. As part of an enterprise-wide multi-tenancy and organizational realignment program, we are seeking a macOS Enterprise Architect to lead the strategy, planning, and lifecycle enablement for Apple macOS endpoints within a future-state multi-tenant operating model.
This is a strategic and technically hands-on role focused on tenant ownership, endpoint policy standardization, patching, software distribution, identity management, and tool integration specific to the Apple ecosystem. The ideal candidate will possess deep experience with macOS enterprise management across platforms such as JAMF, Intune, and Entra ID, and will demonstrate the ability to collaborate across cybersecurity, infrastructure, identity, and GRC stakeholder teams.
Shape
Role Summary
As the macOS Enterprise Architect, you will define and drive the architecture for macOS lifecycle management in a large-scale, multi-tenant enterprise environment. You will evaluate and optimize tooling for device enrollment, app deployment, authentication, and compliance supporting enterprise ownership transitions across organizational domains. You will also guide identity, MDM, and MAM integrations while aligning macOS strategy with overall risk and operational objectives.
Collaboration across Windows and hybrid platform architects, endpoint engineering, and security stakeholders will be key to ensuring macOS devices are securely and consistently managed at scale.
Shape
Key Responsibilities
Architect the macOS strategy and governance model for multi-tenant environments
Lead initiatives related to Apple Business Manager (ABM), Push Certificate lifecycle, and JAMF Pro environment configuration
Design enrollment workflows (kitted vs. out-of-box), authentication flows, and provisioning models
Assess and refine macOS deployment strategies, configuration profiles, and self-service application catalogs
Support migration planning and testing across managed Mac environments
Establish policy baselines aligned to industry and internal standards (e.g., CIS Benchmarks)
Integrate with enterprise identity platforms (e.g., Entra ID) and supporting tooling
Collaborate with vendors, Apple support, and internal teams for MDM/ABM coordination
Align macOS architectural decisions with enterprise security posture strategy (e.g., Prisma Cloud, ServiceNow)
Shape
Required Qualifications
8+ years of experience in macOS platform engineering or architecture in enterprise environments
Proven hands-on experience with JAMF Pro, ABM, Intune, and certificate lifecycle management
Expertise in Apple device provisioning, PreStage profiles, and modern authentication models
Knowledge of macOS hardening techniques and compliance benchmarks (e.g., CIS, FileVault, Gatekeeper)
Experience supporting tenant transitions or mergers involving Apple endpoints
Scripting and automation capabilities (e.g., Bash, Python, Swift)
Strong communication skills and comfort interfacing across IT, cyber, and operations leadership
Shape
Preferred Qualifications
Experience leading tenant/domain transition projects in a large enterprise
Familiarity with tools such as AutoPkg, Munki, Nudge, and Extension Attributes
Experience working with Apple and Mac hardware vendors for enterprise integration
Exposure to enterprise posture tools such as Prisma Cloud or workflow platforms like ServiceNow
Knowledge of cross-platform endpoint strategy in hybrid environments (e.g., SCCM, Windows Autopilot)