The Systems Engineer for Mobility serves as a subject matter expert responsible for the administration, security, lifecycle management, and reliability of the Unified Endpoint Management - Mobility environment. Supporting approximately 20,000 users, the platform enables secure mobile access to email, calendar, applications, and intranet resources across iOS, iPadOS, Android, and macOS, with a focus on macOS engineering and security within Workspace ONE.
This role ensures secure, reliable mobile services through integration with on-premises Exchange and Microsoft 365 (Exchange Online), while adhering to security policies and mobility standards.
- Lead macOS device management within Workspace ONE, including policy design, software distribution, and advanced troubleshooting, ensuring alignment with security standards
- Administer Workspace ONE UEM with full system-level privileges, including management of administrative accounts, roles, provisioning tokens, compliance policies, and mobile applications
- Oversee device enrollment and end-to-end lifecycle management for iOS, iPadOS, Android, and macOS platforms
- Maintain mobility infrastructure components, including connector services, Hub services, and development environments, ensuring system stability and performance
- Partner with Cybersecurity, UEM Security, and SOC teams to identify, assess, and remediate mobile vulnerabilities, including leading response efforts for emerging threats (e.g., iOS vulnerabilities such as DarkSword)
- Enforce compliance with mobility security standards, including HISPOL 8.0, HISPUB 8.3 (KNOX), and HISPUB 8.4 (Mobile Data Protection)
- Troubleshooting and resolution of complex mobility issues, including enrollment failures, KNOX/ABM integration, OS compatibility, and Workspace ONE platform issues
- Coordinate cross-functional engineering efforts with AD Infrastructure, Cybersecurity, and Virtual Systems teams to support system changes, testing, and deployments
- Provide guidance on Apple Business Manager (ABM) requirements, device ownership classifications, Member vs. staff exemption criteria, and vendor onboarding processes, ensuring accurate provisioning within ABM and MDM systems
- Serve as the primary mobility subject matter expert for Members, Chiefs of Staff, IT providers, Technology Service Desk, and internal engineering teams
- Bachelor’s degree in Computer Science or a related field with 5+ years of relevant experience, or equivalent professional experience in Mobile Device Management
- Proficiency in Workspace ONE UEM administration with 3-4 years of hands-on experience
- Experience managing macOS in an enterprise environment using Workspace ONE or comparable MDM platforms (e.g., Jamf, Intune)
- Hands-on experience with macOS configuration profiles, scripting, patching, and security controls
- Good understanding of mobile operating systems and enterprise mobility security frameworks
- Demonstrated ability to collaborate across technical teams, including Cybersecurity, Active Directory Infrastructure, Virtual Systems, and UEM
- Good communication skills, with the ability to convey technical information to both technical and non-technical audiences
Skills Required
- Bachelor's degree in Computer Science or related field with 5+ years relevant experience, or equivalent professional experience in Mobile Device Management
- Proficiency in Workspace ONE UEM administration with 3-4 years of hands-on experience
- Experience managing macOS in an enterprise environment using Workspace ONE or comparable MDM platforms (e.g., Jamf, Intune)
- Hands-on experience with macOS configuration profiles, scripting, patching, and security controls
- Good understanding of mobile operating systems and enterprise mobility security frameworks (HISPOL/HISPUB policies, KNOX)
- Experience with Apple Business Manager (ABM), device enrollment, lifecycle provisioning, and ownership classifications
- Demonstrated ability to collaborate across technical teams (Cybersecurity, AD Infrastructure, Virtual Systems, UEM)
- Strong communication skills for conveying technical information to technical and non-technical audiences
What We Do
For over 20 years, TDI’s one and only passion has been delivering cybersecurity solutions to effectively manage the business of cyber. At the global vanguard of innovation, we created Cybersecurity Performance Management (CPM) and the industry-leading CPM platform, CnSight®. Combining CnSight® with our remarkable historical experience and our exceptional capabilities of cyber operations and compliance, we offer Managed Cybersecurity Performance, a first of its kind managed CPM offering. TDI’s CPM solutions mitigate risk, reduce ransomware, provide continuous compliance, improve cyber-ROI, and provide comprehensive instantaneous visibility into how an organization is performing against its cyber strategy, particularly for Boards of Directors. CnSight® is the industry-leading Cybersecurity Performance Management (CPM) platform which mitigates risk, reduces ransomware, provides continuous compliance, improves cyber-ROI, and provides comprehensive instantaneous visibility into how an organization is performing against its cyber strategy, so executives and Boards may effectively manage the business of cybersecurity– the result: reduced stress, better performance, less cost, and a true understanding of cyber investment. With CnSight® at its core, TDI’s Managed Cybersecurity Performance offering ensures strategic cyber goals are met to protect an organization’s investments, assets and reputation by reducing the risk of ransomware, lowering cyber insurance premiums, improving ROI, reducing legal and fiduciary liability, delivering actionable reporting to the Board and C-Suite, providing on-call advice, ensuring continuous compliance and providing subject matter expertise on the organization’s behalf in meeting with the C-Suite and the Board, dealing with auditors, and supporting budget decisions – the result: reduced stress, better performance, less cost, and a true understanding of cyber investment.
