Tapestry Client Platform Engineer

We believe that difference sparks brilliance, so we welcome people and ideas from everywhere to join us in stretching what's possible.

At Tapestry, being true to yourself is core to who we are. When each of us brings our individuality to our collective ambition, our creativity is unleashed. This global house of brands - Coach and Kate Spade New York - was built by unconventional entrepreneurs and unexpected solutions, so when we say we believe in dreams, we mean we believe in making them happen. We're always on a journey to becoming our best, but you can count on this: Here, your voice is valued, your ambitions are supported, and your work is recognized.

A member of the Tapestry family, we are part of a global house of brands that has unwavering optimism and is committed to being innovative and wholly inclusive. Visit Our People page to learn more about Tapestry's commitment to equity, inclusion, and diversity.

Job Summary

We are seeking a skilled and detail-oriented Client Platform Engineer to join our global End User Computing team. This mid-senior level role focuses on the implementation, standardization, and operational excellence of endpoint solutions across all end user compute platforms in partnership with a Managed Service Provider (MSP). The ideal candidate will bring strong engineering fundamentals and deep hands-on experience managing modern endpoints across iOS, iPadOS, macOS, Android, and Windows 11 using enterprise endpoint management tools, including Microsoft Intune and Jamf. This role supports both physical devices and virtual endpoints, ensuring consistent, secure, and reliable user experiences. Experience with automation at scale is required.

Key Responsibilities

• Engineer, implement, and maintain endpoint management solutions across iOS, iPadOS, macOS, Android, and Windows 11 using enterprise tooling, including Microsoft Intune and Jamf, plus platform-native capabilities.
• Design and operate modern provisioning approaches including Zero Touch provisioning for supported platforms (e.g., Windows Autopilot, Apple Automated Device Enrollment (ADE) via Apple Business Manager, and Android Enterprise enrollment methods).
• Administer and optimize Jamf and Intune for fleet management, including configuration profiles, restrictions, inventory, compliance reporting, and policy/workflow automation.
• Engineer application lifecycle management across platforms, including macOS packaging and deployment, iOS/iPadOS app distribution, and Windows/Android application deployment through available management channels.
• Ensure device compliance with enterprise policies and standards, including CIS, PCI DSS, and other regulatory frameworks.
• Manage OS and firmware update strategies across the fleet (e.g., Windows Update for Business, Autopatch, macOS/iOS/iPadOS DDM) to maintain security posture and user productivity.
• Support the ongoing transition of the Windows endpoint environment to cloud / Entra ID-based management while continuing to support hybrid-joined devices, including limited SCCM/MECM lifecycle management as needed.
• Collaborate with IAM and M365 partner teams on shared responsibilities, particularly around Microsoft Entra ID and endpoint identity/access configurations.
• Understand and support Conditional Access policies and their impact on endpoint behavior and user experience across platforms.
• Configure and manage administrative controls, including RBAC and segmentation constructs (e.g., Intune Scope Tags where applicable), to ensure proper administrative segmentation and policy targeting.
• Implement and maintain endpoint security baselines and configuration standards (e.g., Windows security baselines, macOS configuration profiles, iOS/iPadOS restrictions, and Android enterprise policies).
• Monitor and optimize device performance and user experience using DEX (Digital Employee Experience) tools.
• Support automation and reporting efforts using PowerShell, scripting, and Microsoft Graph API (and equivalent platform tooling where applicable).
• Partner with a Site Reliability Engineer (SRE) to support desktop application management through shared tooling responsibilities across Windows and macOS, and coordinate mobile app management for iOS/iPadOS and Android.
• Guide operational documentation, SOPs, and support materials for multi-platform endpoint management.

Required Qualifications

• 5+ years of experience in endpoint engineering or support across one or more enterprise client platforms.
• Hands-on expertise with Microsoft Intune, including compliance, configuration, application deployment, reporting, and troubleshooting across supported platforms (including Windows 11 and Android).
• Experience supporting hybrid Windows environments during transition to cloud / Entra ID-based management, including some SCCM/MECM (Configuration Manager) lifecycle management.
• Hands-on expertise with Jamf Pro, including configuration profiles, policies, inventory, application deployment, and troubleshooting across iOS, iPadOS, and macOS (and Android where applicable).
• Experience supporting modern enrollment and provisioning approaches such as Windows Autopilot, Apple Automated Device Enrollment (ADE), and Android Enterprise.
• Practical experience managing and troubleshooting endpoints across iOS, iPadOS, macOS, Android, and Windows 11 in an enterprise environment.
• Working knowledge of Apple enterprise services including Apple Business Manager, APNs certificate lifecycle management, and common macOS security/privacy controls (e.g., PPPC/TCC).
• Working knowledge of Android enterprise management concepts including Android Enterprise enrollment models, Managed Google Play, and work profile / fully managed device configurations.
• Familiarity with compliance frameworks such as CIS, PCI DSS, and NIST.
• Working knowledge of Microsoft Entra ID, especially Conditional Access and its endpoint implications.
• Strong understanding of administrative segmentation and role delegation (e.g., RBAC; Intune Scope Tags where applicable).
• Proficiency in automation and scripting (e.g., PowerShell, shell scripting) and basic use of Microsoft Graph API for endpoint administration.
• Experience with DEX tools (e.g., Nexthink, ControlUp, 1E).
• Excellent documentation and communication skills.
• Ability to work effectively in a global, collaborative environment.

Preferred Qualifications

• Exposure to Git for version control and collaboration.
• Microsoft certifications (MD-102, MS-102, AZ-104).
• Jamf certifications (e.g., Jamf 200/300/400) or equivalent hands-on experience.
• Experience with Apple Business Manager device/app assignment, ADE workflows, and Volume Purchase app distribution concepts.
• Experience with macOS administration topics such as software packaging (pkg/dmg), LaunchAgents/LaunchDaemons, and troubleshooting via logs/profiles.
• Familiarity with Apple security management patterns such as FileVault, PPPC/TCC, and macOS update/upgrade orchestration.
• Experience with Android enterprise at scale, including Managed Google Play, app configuration, and OEM enrollment methods (e.g., Android Zero-touch / Knox Mobile Enrollment where applicable).
• Experience working with or alongside MSPs in enterprise environments.
• Familiarity with enterprise IT best practices including patching, change management, and security hardening.

Our Competencies for All Employees

Courage : Doesn't hold back anything that needs to be said; provides current, direct, complete, and "actionable" positive and corrective feedback to others; lets people know where they stand; faces up to people problems on any person or situation (not including direct reports) quickly and directly; is not afraid to take negative action when necessary.
Creativity : Comes up with a lot of new and unique ideas; easily makes connections among previously unrelated notions; tends to be seen as original and value-added in brainstorming settings.
Customer Focus : Is dedicated to meeting the expectations and requirements of internal and external customers; gets first-hand customer information and uses it for improvements in products and services; acts with customers in mind; establishes and maintains effective relationships with customers and gains their trust and respect.
Dealing with Ambiguity : Can effectively cope with change; can shift gears comfortably; can decide and act without having the total picture; isn't upset when things are up in the air; doesn't have to finish things before moving on; can comfortably handle risk and uncertainty.
Drive for Results : Can be counted on to exceed goals successfully; is constantly and consistently one of the top performers; very bottom-line oriented; steadfastly pushes self and others for results.
Interpersonal Savvy : Relates well to all kinds of people, up, down, and sideways, inside and outside the organization; builds appropriate rapport; builds constructive and effective relationships; uses diplomacy and tact; can diffuse even high-tension situations comfortably.
Learning on the Fly : Learns quickly when facing new problems; a relentless and versatile learner; open to change; analyzes both successes and failures for clues to improvement; experiments and will try anything to find solutions; enjoys the challenge of unfamiliar tasks; quickly grasps the essence and the underlying structure of anything.

Our Competencies for All People Managers
Strategic Agility : Sees ahead clearly; can anticipate future consequences and trends accurately; has broad knowledge and perspective; is future oriented; can articulately paint credible pictures and visions of possibilities and likelihoods; can create competitive and breakthrough strategies and plans.
Developing Direct Reports and Others : Provides challenging and stretching tasks and assignments; holds frequent development discussions; is aware of each person's career goals; constructs compelling development plans and executes them; pushes people to accept developmental moves; will take on those who need help and further development; cooperates with the developmental system in the organization; is a people builder.
Building Effective Teams : Blends people into teams when needed; creates strong morale and spirit in their team; shares wins and successes; fosters open dialogue; lets people finish and be responsible for their work; defines success in terms of the whole team; creates a feeling of belonging in the team.

Tapestry, Inc. is an equal opportunity and affirmative action employer and we pride ourselves on hiring and developing the best people. All employment decisions (including recruitment, hiring, promotion, compensation, transfer, training, discipline and termination) are based on the applicant's or employee's qualifications as they relate to the requirements of the position under consideration. These decisions are made without regard to age, sex, sexual orientation, gender identity, genetic characteristics, race, color, creed, religion, ethnicity, national origin, alienage, citizenship, disability, marital status, military status, pregnancy, or any other legally-recognized protected basis prohibited by applicable law.

Americans with Disabilities Act (ADA)

Tapestry, Inc. will provide applicants and employees with reasonable accommodation for disabilities or religious beliefs. If you require reasonable accommodation to complete the application process, please contact Tapestry People Services at 1-855-566-9264 or [email protected]

Visit Tapestry, Inc .

Base Pay Range
$145,000.00-$160,000.00

Here are some of the benefits that we offer: Medical insurance, Dental insurance, Vision insurance, 401 (K), Paid Paternity and Maternity leave, Commuter Benefits, Disability insurance and Tuition assistance. Please click here for a complete list of U.S Corporate Compensation & Benefits.