Systems Administrator; Mac

Title: Systems Administrator (Mac)

Location: Boulder, CO – Onsite (Hybrid may be considered after acclimation, but onsite presence is required)

Terms: Full‑time

Clearance: U.S. Citizenship required and ability to obtain and maintain a Public Trust clearance

Travel: 0–10%

RESULTS. INNOVATION. VALUES. ACCOUNTABILITY.

That’s RIVA. Our employee‑first approach has manifested a culture that attracts the best and brightest. By investing in people first and providing a flexible work environment, our employees have higher morale, higher productivity rates, and lower turnover. At RIVA, people are our #1 priority.

RIVA Solutions supports the National Oceanic and Atmospheric Administration (NOAA) and its research organizations by delivering secure, reliable IT infrastructure and endpoint services that enable mission‑critical scientific research and data analysis.

This role supports NOAA’s Physical Sciences Laboratory (PSL) in Boulder, CO, providing advanced macOS engineering and enterprise device management services. The environment supports scientists, researchers, and technical staff whose work depends on stable, secure, and high‑performance Apple systems. RIVA’s work ensures these systems remain compliant with Department of Commerce (DOC), NOAA, and Office of Oceanic and Atmospheric Research (OAR) security and operational policies while delivering a seamless end‑user experience.

RIVA Solutions is seeking a highly skilled Systems Administrator (Mac) to serve as a subject matter expert supporting enterprise macOS environments for NOAA PSL. This role is responsible for the deployment, security, automation, and lifecycle management of Apple systems using modern device management and zero‑touch provisioning workflows. The ideal candidate is deeply experienced in the Apple ecosystem, particularly Jamf Pro, Apple Business Manager, and macOS automation.

This position serves as a Tier 3 escalation resource, collaborates closely with security teams, and plays a key role in ensuring endpoint compliance, performance, and usability in a research‑driven environment.

• Design, configure, and maintain Jamf Pro infrastructure (cloud or on‑prem)
• Create and manage advanced Smart Groups, Configuration Profiles, and Policies
• Manage the full macOS device lifecycle from automated enrollment through secure decommissioning
• Build and maintain Zero‑Touch deployment workflows using Apple Business Manager (ABM) and Automated Device Enrollment (ADE)
• Maintain and enhance the Jamf Self Service portal, ensuring access to approved software and tools
• Develop and maintain automation scripts using Bash/Zsh and Python to streamline configuration, patching, and deployments
• Create custom tools or helper utilities to improve macOS end‑user experience
• Manage macOS updates and patching using Jamf policies and Apple’s native update frameworks
• Coordinate with IT security teams to remediate vulnerabilities and maintain compliance with DOC, NOAA, and OAR policies
• Manage File Vault 2 encryption, including secure escrow of recovery keys
• Deploy and manage Endpoint Detection and Response (EDR) and antivirus solutions
• Ensure device compliance through automated remediation and monitoring
• Serve as Tier 3 escalation support for complex macOS hardware and software issues
• Evaluate new Apple hardware and macOS releases, conducting compatibility testing prior to rollout
• Maintain comprehensive technical documentation, system diagrams, workflows, and end‑user guides

• Bachelor’s degree in Computer Science or a related field (or equivalent professional experience)
• Minimum 5 years of experience in macOS systems engineering or enterprise Apple administration
• Deep hands‑on experience with Jamf Pro in enterprise environments
• Strong scripting skills in Bash/Zsh and Python
• Expert‑level knowledge of macOS, Apple Business Manager, and Apple Push Notification services (APNs)
• Solid understanding of networking fundamentals including TCP/IP, DNS, and DHCP
• Familiarity with macOS security frameworks, certificates, and identity providers
• Strong troubleshooting, documentation, and communication skills
• Ability to obtain and…