Endpoint Developer

Role Summary

The Endpoint Developer is a key contributor in building, automating, and integrating Moderna’s endpoint ecosystem across Windows, macOS, and mobile environments. This role combines software development, systems integration, and endpoint automation expertise to enable secure, scalable, and efficient device operations. This individual will develop backend services and automation frameworks that connect endpoint management platforms (SCCM, Intune, JAMF) with cloud services, databases, and ServiceNow workflows. Using PowerShell for orchestration, Python for AWS Lambda functions, and Node.js for asynchronous or API-driven processes, they will create and maintain automation pipelines that deliver real-time functionality to endpoints. The Endpoint Developer will also maintain and enhance the Kiosk configuration, a complex framework responsible for managing hundreds of service accounts integrated with CyberArk Endpoint Privilege Manager (EPM), ensuring credential lifecycle, compliance, and security alignment across environments. This role collaborates closely with Endpoint Engineering, Cloud, Identity, ServiceNow, and Lab Engineering teams supporting both GxP and non-GxP environments, ensuring all endpoint automations meet enterprise security and compliance standards.

Responsibilities

• Design, develop, and maintain automation pipelines and integration functions using PowerShell, Python, and Node.js to extend endpoint management capabilities.
• Build and maintain AWS Lambda functions that process API requests, manage credentials, and coordinate cross-platform automations.
• Develop secure client–server interactions, enabling endpoint scripts to communicate with backend APIs hosted in AWS.
• Integrate ServiceNow with SCCM and JAMF to trigger patching, deployment, and compliance automations through workflow-driven events.
• Maintain and enhance the Kiosk configuration framework for automated service account management, including CyberArk EPM integration for credential rotation and privilege control.
• Implement and manage API layers using AWS services such as API Gateway, Secrets Manager, Lambda, DynamoDB, and CloudWatch.
• Apply secure authentication and authorization methods using Okta, OAuth, and token-based or certificate-based models for service integrations.
• Collaborate with Endpoint and Cloud teams to implement secure infrastructure-as-code and enforce least-privilege access for all automation functions.
• Ensure reliability and audit readiness by incorporating structured logging, monitoring, and error handling into all automation workflows.
• Contribute to internal documentation, reusable code libraries, and best practices for endpoint automation and platform development.

Qualifications

• Required: 7+ years of experience developing automation or integration frameworks in enterprise IT or endpoint management environments.
• Required: Strong proficiency in PowerShell (for orchestration) and Python (for AWS Lambda and backend automation).
• Required: Working knowledge of Node.js for event-driven or API-based services.
• Required: Experience with AWS developer tools such as Lambda, API Gateway, Secrets Manager, DynamoDB, CloudWatch, and IAM.
• Required: Proven experience integrating SCCM, Intune, or JAMF with APIs, databases, or workflow automation platforms like ServiceNow.
• Required: Understanding of CyberArk Endpoint Privilege Manager (EPM) or similar credential-governance tools, particularly in managing large-scale service accounts.
• Required: Familiarity with Okta and modern authentication standards (OAuth2, OIDC, JWT).
• Required: Solid understanding of secure API development, client–server models, and endpoint automation deployment.
• Required: Strong documentation, collaboration, and troubleshooting skills within multi-team technical environments.

Education

• Preferred: Bachelor’s degree in Computer Science, Software Engineering, or equivalent technical discipline.

Skills

• Experience designing and deploying serverless applications in AWS using Python or Node.js.
• Knowledge of endpoint management platforms (SCCM, Intune, JAMF) and their extensibility through APIs or automation frameworks.
• Practical experience with CyberArk EPM, including policy configuration, privilege elevation, and credential lifecycle automation.
• Familiarity with infrastructure-as-code (Terraform, AWS CDK, or CloudFormation).
• Experience developing ServiceNow integrations or custom workflows that interface with IT management tools.
• Understanding of DevSecOps principles, automation security, and compliance in GxP or regulated environments.
• Proven ability to translate endpoint operational needs into maintainable, auditable, and secure software solutions.