Apple/macOS Subject Matter Expert (Computer Engineering, Senior Associate)

Summary

The MIL Corporation is looking for an Apple/macOS Subject Matter Expert (Computer Engineering, Senior Associate). The Apple/macOS SME provides advanced engineering support for securing, configuring, imaging, patching, and managing macOS devices across the enterprise. This role focuses on designing, implementing, and maintaining technical controls that strengthen endpoint security, support device lifecycle operations, and ensure compliance across macOS platforms. The SME operates in a highly governed environment requiring change control discipline, detailed documentation, and collaboration with Service Desk Engineering, IAM, SOC, and Cybersecurity teams.

This position currently requires an on-site schedule. Schedule is subject to change based on company/contract requirements.

This position is currently unfunded and is being posted in anticipation of a future contract award and funding approval. We are proactively identifying and engaging with qualified candidates. While candidates may be contacted for pre-screening, any hiring decisions will be contingent upon funding availability and final program requirements or client approval.

Responsibilities

macOS Workstation Imaging & Baseline Engineering

• Design, build, maintain, and secure standard macOS workstation images for onsite and remote/VDI use, ensuring alignment with approved baseline security controls.
• Integrate macOS images with VDI clients, EDR agents, authentication mechanisms, and logging agents.
• Maintain version control, image-release processes, validation steps, and rollback procedures for macOS workstation images.
• Perform postimage validation testing (connectivity, authentication, app compatibility, security agents).

macOS Patch, Configuration, and Compliance Management

• Engineer and maintain macOS OS/application patching, version control, and lifecycle management using tools such as Ivanti, KACE, or JAMF.
• Remediate configuration drift and ensure compliance against secure macOS baseline standards.
• Document macOS baseline configurations, deployment workflows, and compliance remediation paths.

macOS Device Enrollment & Provisioning

• Implement and maintain macOS enrollment workflows using Apple Business Manager and JAMF Pro.
• Enforce secure provisioning, conditional access posture, and baseline profile application before network access.
• Support lifecycle operations: provisioning, reassignment, decommissioning, secure wipe, and FileVault recovery key escrow.
• Ensure accurate macOS asset inventory, ownership mapping, and lifecycle visibility.

Logging, Monitoring, Telemetry & Audit Engineering (macOS Focus)

• Configure macOS Unified Logs, endpoint agents, and log forwarding to SIEM/EDR platforms.
• Ensure telemetry health, audit coverage, and reliable ingestion of macOS securityrelevant events.
• Support forensic collection procedures and maintain audit trails for macOS configuration changes and remediation actions.

Security Engineering for macOS Endpoints

• Design/implement controls to prevent initial compromise, lateral movement, and persistence mechanisms on macOS devices.
• Implement secure authentication, including passwordless methods and hardware-backed credentials (e.g., YubiKey, CAC, software-based keys).
• Strengthen device enrollment, identity linkage, and endpoint visibility across macOS environments.

Documentation, Knowledge Transfer & Engineering Support

• Develop macOS runbooks for imaging, patching, enrollment troubleshooting, validation, and remediation.
• Maintain a versioned knowledge base covering macOS baselines, automation, and recovery procedures.
• Conduct training for Service Desk, IAM, and SOC teams to ensure operational sustainability.

Required Qualifications

• 10+ years of professional work experience
• 8+ years in IT, endpoint engineering, or cybersecurity.
• 6+ years performing engineering (not help desk) functions in enterprise environments.
• Experience working under strict change control, security governance, and audit processes.
• Extensive experience building and maintaining macOS workstation images (including automation, validation, rollback, version control).
• Hands-on experience with macOS patching and config management using Ivanti, KACE, and especially JAMF Pro.
• Experience with Apple Business Manager, FileVault key escrow, and macOS provisioning workflows.
• Ability to configure macOS endpoint logging and telemetry ingestion into SIEM/EDR platforms.
• Familiarity with passwordless authentication, YubiKeys, CAC, and hardware-backed identity mechanisms for macOS.

Desired Qualifications

• Handson experience developing automation for macOS (e.g., JAMF scripting, Python, Zsh, or shellbased automation for imaging, patching, and compliance workflows).
• Prior experience designing or operating macOS telemetry pipelines, including log normalization strategies for SIEM/EDR platforms (e.g., Sentinel, Splunk, CrowdStrike).
• Familiarity with Apple enterprise ecosystem integrations, such as Apple Business Manager (ABM) advanced workflows, MDMdriven zerotouch deployments, and certificatebased network access on macOS.
• Experience supporting mixedOS environments (macOS + Windows) with an emphasis on contributing macOSfocused engineering recommendations that improve overall enterprise endpoint posture.

Education

Bachelor's degree in IT, Cybersecurity, or related field (or equivalent experience).

Clearance

Active Top Secret (TS) clearance.

Compensation

The MIL Corporation values your contributions and offers a range of benefits to support your overall well-being. We are pleased to offer a comprehensive range of benefits to our full-time employees which include health, life, disability, and retirement plans, as well as paid time off, opportunities for professional growth and tuition assistance. Additional benefits and incentives may also apply, which will be communicated during the hiring process.

For this position, the projected compensation range is $131,000 - $145,000 per year. This estimate represents the typical salary range and is just one part of MIL's complete compensation package. Final salary for this position is determined based on factors such as individual qualifications, education, experience, and contractual limitations. Learn more on the MIL Careers page.

Why MIL?

The MIL Corporation (MIL) is a dynamic workforce of industry professionals who deliver world-class solutions in cyber, engineering, financial management, and information technology - and we are looking for candidates like you! MIL offers opportunities for professionals at all stages of their careers, from early-career candidates to experienced industry professionals. We are known for a collaborative, people-first culture where employees are supported, valued, and encouraged to grow. This commitment to our people and our work is reflected in the industry and workplace awards MIL has received over the years.

• 2021 - 2024, Top Workplaces USA award (Energage)
• 2017 - 2025 Top Workplaces Award, Greater Washington Area (The Washington Post)
• 2018 - 2025 Certified Great Workplace, Great Place to Work
  • 2021 - 2025, Best Workplaces in Consulting & Professional Services
  • 2021 Fortune Best Workplaces for Millennials
  • 2018 Fortune, Great Place to Work: Best Place to Work for Diversity
• 2017, 2020 - 2025 Top Workplace Award, South Carolina (Greenville Business Magazine, Columbia Business Monthly, and Charleston Business Magazine)
• 2025 Corporate Partnership Award, Association of Fundraising Professionals, Maryland Chapter
• 2025 Moxie Award, GovCon Category
• 2024 Patriot Award, Employer Support of the Guard and Reserve (ESGR), Department of Defense
• 2022 Freedom Award, Employer Support of the Guard and Reserve (ESGR), Department of Defense
• 2018, Above & Beyond Award, Employer Support of the Guard and Reserve (ESGR), Department of Defense

If your goal is to help the federal government deploy leading technologies, improve financial management, or defend the nation in cyberspace, MIL welcomes you. Become a part of something greater, where you, the people, make the difference.

Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status or other characteristics protected by state or federal law.