Principal IT Engineer - Endpoints

Company Overview

ID.me is the next-generation digital identity wallet that simplifies how individuals securely prove their identity online. Consumers can verify their identity with ID.me once and seamlessly login across websites without having to create a new login and verify their identity again. Over 140 million users experience streamlined login and identity verification with ID.me at 20 federal agencies, 44 state government agencies, and 66 healthcare organizations. More than 600 consumer brands use ID.me to verify communities and user segments to honor service and build more authentic relationships. ID.me’s technology meets the federal standards for consumer authentication set by the Commerce Department and is approved as a NIST 800-63-3 IAL2 / AAL2 credential service provider by the Kantara Initiative. ID.me is committed to “No Identity Left Behind” to enable all people to have a secure digital identity.

Role Overview

ID.me is seeking a highly skilled and experienced Principal IT Engineer, Endpoints to lead the design, automation, and support of endpoint management technologies across the organization. This role will serve as a technical leader and subject matter expert in endpoint engineering, software packaging, configuration management, and automation across macOS, Windows and mobile platforms.

The ideal candidate is passionate about scalable, secure, and automated solutions to manage devices in a modern, cloud-native enterprise environment. You will work closely with our IT Engineering, Security, and Compliance teams to drive initiatives that improve endpoint reliability, user experience, and operational efficiency at scale.

This is an onsite position based in our McLean VA headquarters.

Role Responsibilities

• Architect, develop, and maintain endpoint management and configuration systems, including modern device management platforms such as Jamf, Intune, and MaaS360.
• Build and maintain reusable automation tools and frameworks using scripting and programming languages such as Bash, PowerShell, Python, or Go.
• Design and implement solutions for software packaging, deployment, and version control using Git and CI/CD pipelines.
• Develop compliance and configuration baselines for Windows and macOS systems and ensure enforcement through policy-based mechanisms (e.g., MDM, scripts).
• Collaborate with Security, GRC, and Engineering teams to enforce secure configurations and remediate vulnerabilities across endpoint fleets.
• Evaluate, recommend, and integrate new technologies and tools to streamline device provisioning, configuration, and lifecycle management.
• Serve as an escalation point for complex issues affecting endpoint systems and software distribution.
• Maintain technical documentation, runbooks, and architectural diagrams.
• Drive incident response and root cause analysis for endpoint-related issues.
• Lead cross-functional initiatives that advance the security, scalability, and observability of our endpoint ecosystem.
• Serve as a technical lead and mentor to other engineers and administrators within the IT team.

Basic Qualifications

• Bachelor’s degree in Computer Science, Engineering, Information Technology, or a related field—or equivalent practical experience
• 10+ years of experience in IT engineering, systems engineering, software engineering, or SRE roles.
• 5+ years of experience with MDM technologies.
• 7+ years of experience with scripting and programming (e.g., Bash, PowerShell, Python, or Go) to automate endpoint operations in an enterprise environment.
• 5+ years of hands-on experience utilizing Git-based version control including CI/CD pipelines.
• 5+ years of experience designing and maintaining software packaging, installation frameworks, and silent deployment techniques at scale.
• 5+ years of experience applying endpoint configuration and security frameworks (e.g., CIS Benchmarks, Apple MDM, Windows GPO/Intune) in practice.