Make a difference. Be happy. Grow your career.
The MDM Engineer II is responsible for ensuring the operations of assigned functions in accordance with Nordic Global Healthcare IT leadership and IT governance. This position is responsible for implementing, managing, and supporting mobile and endpoint device management solutions with a primary focus on macOS and iOS devices. This role works within established architecture and standards, supports day-to-day operations, and handles escalated issues related to device enrollment, compliance, and configuration using Microsoft Intune and Workspace ONE.
Key Responsibilities
- Ensures compliance with Standard Operating Procedures (SOP)
- Administer and support Intune and Workspace ONE for macOS and iOS devices
- Deploy and maintain:
- Configuration profiles
- Compliance policies
- Security baselines
- Application deployments
- Support Apple device lifecycle management:
- Apple Business Manager (ABM)
- Automated Device Enrollment (ADE)
- User-initiated and zero-touch enrollment
- Troubleshoot complex device issues escalated from Service Desk:
- Enrollment failures
- Profile/application conflicts
- Compliance and access issues
- Assist with:
- OS upgrade planning and execution
- Certificate-based authentication (SCEP, PKCS)
- Device compliance reporting and remediation
- Partner with:
- Identity/IAM teams (Entra ID / Azure AD)
- Security teams on Conditional Access and device trust
- Maintain accurate documentation for configurations, procedures, and support runbooks
- Participate in change management and scheduled releases
- Provide operational support for ChromeOS devices (as applicable)
- Perform other duties and responsibilities as assigned
Skills and Experience
- Proficient in administering and supporting Microsoft Intune and Workspace ONE in an enterprise environment
- Strong hands-on experience managing macOS and iOS devices, including configuration profiles, restrictions, and application deployments
- Working knowledge of Apple Business Manager (ABM) and modern Apple enrollment methods such as Automated Device Enrollment (ADE)
- Ability to troubleshoot and resolve complex endpoint issues related to:
- Device enrollment and provisioning
- Compliance and access enforcement
- Application deployment and updates
- Familiarity with identity-driven device management, including Entra ID (Azure AD) integration
- Understanding of endpoint security fundamentals, including device compliance and Conditional Access
- Basic scripting and automation skills (e.g., Bash, PowerShell) to support configuration and troubleshooting
- Ability to follow established standards and contribute to documentation and operational runbooks
- Effective communication skills for collaborating with service desk, security, and infrastructure teams
- Highly self-motivated and directed, with keen attention to detail
Minimum Years of Experience
- Generally, requires a Bachelor's degree and 5 years of related experience, a Master's degree and 3 years of related experience, or 8 years of related experience and no degree.
- 3–5 years of experience in endpoint management, MDM, or EUC engineering roles
- Relevant certifications preferred (e.g., Microsoft MD-102, Apple or Workspace ONE certifications)
Other Knowledge, Skills and Abilities Required
Additional details
- Expect work shift of M-F 8am-5pm EST
- Must be able/willing to work off shifts, nights, weekends as required
- 100% remote, but occasional travel may be needed
Nordic is an equal opportunity employer. We are committed to creating an inclusive environment for all employees and applicants. We do not discriminate on the basis of race, color, religion, sex, national origin, age, disability, genetic information, marital or veteran status, or any other protected status under applicable federal, state, or local laws. We encourage individuals of all backgrounds to apply, including women, minorities, individuals with disabilities, and veterans.