Edwards Lifesciences is the leading global structural heart innovation company, driven by a passion to improve patient lives. Through breakthrough technologies, world-class evidence and partnerships with clinicians and healthcare stakeholders, our employees are inspired by our patient-focused culture to deliver life-changing innovations to those who need them most.
Innovation starts from the heart. At Edwards Lifesciences, we’re dedicated to developing ground-breaking technologies with a genuine impact on patients’ lives. At the core of this commitment is our investment in cutting-edge information technology. This supports our innovation and collaboration on a global scale, enabling our diverse teams to optimize both efficiency and success. As part of our IT team, your expertise and commitment will help facilitate our patient-focused mission by developing and enhancing technological solutions.
We are seeking an experienced and strategic technical lead for Endpoint Architecture to oversee the end user compute function for our global medical device manufacturing organization. This role sits above the teams responsible for SCCM, Intune, Jamf, and Apple Business Manager. The employee will define architecture, best practices, tooling strategy, governance, and operational excellence, ensuring our global endpoints and manufacturing systems are secure, efficient, scalable, compliant, and deliver a great user experience.
This position is an “onsite” role and will be based in “Pune, India”.
How you will make an impact:
Own and govern the endpoint environment including desktop, laptop, VDI and mobile device, acting as the single point of accountability for architecture, standards, and operational health of the endpoint ecosystem.
Govern and oversee all changes to endpoint management tooling, configurations, policies, and processes — review and approve change requests, ensuring they follow best practices, align with security requirements, and are well-tested before deployment.
Chair or participate in change advisory processes for endpoint-related initiatives, balancing business needs with stability and user experience.
Define and maintain environment baselines (OS builds, configurations, security settings, compliance rules) and enforce drift detection / remediation processes[AG1] .
Define and maintain endpoint management architecture & roadmap, covering Windows and Apple device endpoints (laptop and mobile), including OS provisioning, imaging, zero-touch deployment, BIOS updates, build vs BYOD policies, lifecycle management.
Support information security directives by aligning to technical standards and best practices for endpoint security including hardening, vulnerability and patch management, asset management,.
Oversee tool evaluation, selection, integration and optimization device management at scale, ensuring efficient operations, cost-effectiveness, and alignment with cybersecurity policies.
Ensure endpoint fleet health: define and monitor metrics (e.g. compliance, patching status, device inventory accuracy, proactive endpoint incident identification), and set up alerts / dashboards.
Provide escalation support for advanced, cross-platform endpoint issues and architecture-level troubleshooting.
Collaborate with security, network, infrastructure, operations, ServiceDesk, procurement, and business stakeholders to ensure endpoint strategies align with broader corporate goals.
Mentor and guide the SCCM / Intune / Jamf teams; define SOPs, documentation, runbooks, training for staff.
Stay up to date with industry trends, emerging endpoint technologies, platform changes (Windows, macOS, iOS, Android); evaluate and recommend adoption where beneficial.
Conduct cost/benefit analyses, total cost of ownership, licensing, and help manage vendor relationships for endpoint tools and services.
What you’ll need:
7-10+ years of experience in endpoint device management in large enterprises (20,000+ endpoints preferred).
Demonstrated technical expertise in Windows endpoint troubleshooting and management: SCCM / MECM, Intune / Microsoft Endpoint Manager, imaging / OS deployment tools, GPO / policy management, Autopilot or similar provisioning.
Deep technical expertise with Apple device management: Jamf (Pro or similar), Apple Business Manager, macOS / iOS / iPadOS workflows for provisioning, security, update management.
Strong understanding of endpoint security: threat surface, hardening, EDR, encryption, compliance, vulnerability management etc.
Experience with automation and scripting a must.
Experience designing or leading architecture / modernization projects (migrations, tool consolidation/integration).
Strong understanding and alignment to Microsoft Privileged Access strategy and zero trust principles.- Strong communication skills: able to present to senior management; produce technical designs & documentation; mentor engineers.
Experience with vendor evaluation, licensing, cost management.
Relevant certifications are a plus (Microsoft Endpoint, Modern Workplace, Jamf, CISSP, CISM, etc.).
What else we look for:
Experience working in a global manufacturer, where endpoints directly support core operations and uptime.
Experience working with a global team, supporting follow the sun. .
Familiarity with other device management or security tools (UEMs, 3rd party patching tools).
Reporting & Stakeholders
Reports to Head of Endpoint.
Key stakeholders include information security, Infrastructure / Networking, Identity & Access, ServiceDesk / Support, Procurement, and Business unit IT leads, Manufacturing and cleanroom operations.
How you’ll thrive in your first 6–12 months:
Complete an audit of the current environment
Deliver a clear roadmap with prioritized modernization or consolidation initiatives.
Improve endpoint health metrics: patch compliance, imaging time, OS update rates.
Publish and roll out standardized policies and technical baselines.
Improve issue triage and remediation processes for endpoint troubleshooting.
Successfully deliver at least one major modernization initiative (e.g. Jamf expansion, mobile security improvements).
Define hardening standards and drive their implementation across the environment
