Senior Digital Workspace Engineer
Listed on 2026-07-04
-
IT/Tech
Cybersecurity
Oncourse Home Solutions, also operated as American Water Resources, is a trusted home protection provider helping homeowners across the country protect what matters most. We are a $500 million organization backed by private equity firm Apax Partners, serving 2 million customers across 43 states. We partner with 25+ utilities and municipalities (and growing!) to provide customized solutions tailored to any community - delivering real value where people live.
We help homeowners protect the essential systems that keep their homes running - from HVAC, appliances, and electrical to water, sewer, gas lines, and more - so they can avoid the stress and financial impact of unexpected repairs. Our work helps homeowners stay safe, comfortable, and confident in their homes every day.
At Oncourse, our people are whatmakesthat possible. We call ourselves SUPERs
- Successful, United, Progressive, Empathetic, and Reliable-because that’show we show up for our customers and for each other. We invest in our employees through competitive benefits, an inclusive culture, and employee-led resource groups that strengthen connection, community, and belonging across the company.
As an equal opportunity employer, our employment decisions are based on business needs, job requirements and individual qualifications without regard to race, color, religion, age, sex (including pregnancy), sexual orientation, gender identity, national origin, ancestry, marital status, parental status, mental or physical disability, military or veteran status, or any other basis protected by federal, state, or local law. Oncourse Home Solutions is committed to recruiting and retaining talented applicants and to providing all employees with a workplace free from discrimination and/or harassment.
PositionSummary
The Sr. Digital Workspace Engineer owns the full lifecycle of Oncourse Home Solutions' enterprise endpoint environment — spanning Windows and macOS devices, identity-driven access controls, M365 security tooling, and automation-first operations. This is a senior hands-on technical role operating at the intersection of endpoint engineering, cybersecurity, and operational delivery.
The role requires deep expertise across Microsoft Intune, Jamf Pro, Microsoft Entra , Defender for Endpoint, and Microsoft Purview, paired with the stakeholder presence to support VIP users, contact center operations, and executive leadership. The engineer will design and operate endpoint platforms that are resilient, secure by design, and automated at every opportunity.
Located at our office in Naperville, IL. Our office environment is a key driver of our company culture and employee experience, so a regular in-office hybrid model (generally T-TH in office and M & F remote) is required.
Responsibilities include but are not limited to:- Endpoint Lifecycle Management. Architect, package, and deploy standardized Windows and macOS images using Autopilot, Intune, and Jamf Pro. Manage the full MDM lifecycle for corporate and BYOD devices across iOS, Android, and macOS — including enrollment, compliance profiles, and MAM app protection policies. Own Autopilot end-to-end (ESP tuning, all deployment models), zero-touch large-scale rollouts, OS update cadences, app packaging, and CIS/NIST endpoint hardening.
- Identity and Conditional Access. Design, implement, and maintain Microsoft Entra l Access policies aligned to Zero Trust principles. Manage device compliance policies, identity-based controls, and privileged access workstation (PAW) configurations.
- M365 Security Operations. Administer Microsoft Defender for Endpoint (MDE) — threat and vulnerability management, ASR rules, and EDR. Operate Microsoft Purview for DLP, information protection labels, and eDiscovery workflows in support of legal and compliance requirements.
- Scripting and Automation. Build and maintain Power Shell and Python automation scripts for endpoint provisioning, patch compliance reporting, configuration drift remediation, and security telemetry. Reduce manual toil through automated workflows integrated with Intune, Jamf, and M365 APIs.
- Networking and Connectivity. Support enterprise networking functions…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).