CrawlJobs Logo
Thames Water Logo Thames Water · IT - Administration

Platform Owner - Endpoint Platform

United Kingdom, Clearwater Court 85000.00 GBP / Year · Job Posted June 10, 2026
Apply Position
Job Link Share

Job Description

We’re looking for a decisive and delivery-driven Endpoint Platform Owner to take full accountability for secure, compliant, and seamlessly managed device ecosystems. The Endpoint Platform is accountable for delivering a secure, compliant, and seamlessly managed device ecosystem. It owns endpoint configuration, policy, and lifecycle management, leveraging modern management approaches to provide consistent, automated, and resilient user experiences. The platform ensures devices are continuously secure and up to date through proactive patching, configuration management, and compliance enforcement. It enables a cloud-first, zero-touch approach to deployment and management, reducing operational overhead while strengthening the organisation’s security posture and user experience.

Job Responsibility

  • Own endpoint configuration and lifecycle management
  • Deliver cloud-first, zero-touch device management
  • Ensure patching and compliance enforcement
  • Improve endpoint security and resilience
  • Drive automation and service improvement

Requirements

  • ITIL Foundation qualification
  • Experience in endpoint or device management platforms
  • Understanding of endpoint security and compliance
  • Ability to manage policies and frameworks
  • Strong problem-solving skills

Nice to have

  • Microsoft Intune experience
  • Endpoint automation experience

What we offer

  • Competitive salary up to £85,000 per annum
  • 26 days annual leave, increasing with service, plus bank holidays
  • Generous pension scheme
  • Performance-related pay scheme
  • Access to private healthcare
  • Wellbeing and flexible working benefits
Thames Water - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Platform Owner - Endpoint Platform

8 matching positions

New

Vp, Business Technology

Genius Sports is transforming how enterprise technology is built and experienced...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
geniussports.com Logo
Genius Sports
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience leading an enterprise technology or business systems function in a fast-moving, commercially driven organization, with direct accountability for both strategic platforms and operational IT delivery. You have an engineering background and have built things, not just managed vendors
  • Deep familiarity with the tools in scope: Salesforce, Atlassian, Zendesk, Microsoft 365, Slack, and AI productivity platforms. You do not need to have run all of them simultaneously, but you need to know how they fit together
  • A track record of translating business requirements into technology decisions, and technology investments into measurable business outcomes
  • Strong commercial instincts. You understand vendor dynamics, know how to negotiate, and do not let the portfolio sprawl
  • Experience managing cross-functional stakeholders at senior level, including Finance, HR, Sales, and Operations leaders who have strong opinions about the tools they use
  • Solid grounding in identity and access management, endpoint management, and IT operations governance, enough to set standards and hold a team accountable. Alongside this, hands-on experience with infrastructure-as-code (Terraform), CI/CD pipelines, cloud platforms (AWS or Azure), and API-layer integration. You can work in code, review it, and build teams that ship it
  • Clear, direct communicator who can present to ExCo and board audiences without jargon and with a sharp focus on business impact
  • Hands-on experience deploying AI and automation tooling in production, including agentic workflows, MCP Servers, or API-integrated AI platforms. A grounded view of where generative AI adds measurable value in an enterprise context, and the governance instincts to deploy it responsibly
  • Experience operating within a SOX-compliant or similarly governed environment is an advantage
Job Responsibility
Job Responsibility
  • Lead the strategy, roadmap, and day-to-day operations for Genius Sports' core business systems, including Salesforce, Atlassian (Jira and Confluence), Zendesk, and Microsoft 365
  • Define the integration architecture between business systems and enterprise platforms, ensuring data flows cleanly between tools without creating operational debt
  • Manage vendor relationships in close partnership with Strategic Sourcing
  • Own the Workday integration layer, working with HR and Finance system owners to ensure data integrity and operational reliability across connected platforms. Position the team as a trusted integration partner as broader Workday ownership evolves
  • Architect and build the internal automation platform that will underpin how Genius Sports automates workflows, integrates systems, and delivers self-service capabilities across the business. This is not a buy-only function: you will be building
  • Own the IaC and DevOps practices for the Business Technology estate, using Terraform, CI/CD pipelines, and infrastructure-as-code standards to ensure platform environments are version-controlled, auditable, and scalable
  • Lead the design and deployment of agentic automation workflows, including integrations built on MCP Servers, AWS Bedrock, Zapier, and API-layer connectors that reduce manual process overhead across business functions
  • Partner with Engineering and Data teams to ensure the internal platform is built to the same standards as product engineering: proper source control, code review, deployment pipelines, and documentation
  • Drive the team's evolution from reactive IT support to proactive platform engineering, embedding engineering culture, practices, and accountability into how the function operates
  • Own the strategy and governance for enterprise AI and productivity tools, including Claude, ChatGPT, and Microsoft Copilot, ensuring deployment aligns with the company's AI governance framework
What we offer
What we offer
  • competitive salary and range of benefits
  • support employee wellbeing and help you grow your skills, experience and career
  • Fulltime
Read More
Arrow Right
New

Mft Platform Engineer – Globus Implementation, Configuration & Operations

LIFE AT TECHM GET STARTED ALUMNI CONTACT US REGISTER / SIGN IN Scam Alert : To a...
Location
Location
United States , Florham Park
Salary
Salary:
130000.00 - 140000.00 USD / Year
techmahindra.com Logo
Tech Mahindra
Expiration Date
August 31, 2026
Flip Icon
Requirements
Requirements
  • A Bachelor’s or Higher Degree
  • 3+ years hands-on experience with the Globus platform, including Globus Connect Server v5 deployment, configuration, and administration
  • Deep understanding of the Globus ecosystem: endpoints, collections (managed and guest), storage gateways, storage connectors (S3, POSIX), and the Globus Web App
  • Experience with GridFTP protocol — concurrency, parallelism, data channel tuning, and performance optimization for large-scale transfers
  • Familiarity with Globus Auth — OAuth 2.0 / OpenID Connect integration, federated identity management, and identity provider configuration
  • Experience with Globus Flows for workflow automation and scheduled/recurring transfer operations
  • Experience with Globus CLI and Globus Python SDK for scripting and automation
  • Familiarity with Globus vendor support engagement processes
  • Hands-on experience with GCP Compute Engine (VM provisioning, management, and maintenance)
  • Experience with GCP Cloud Storage (S3-compatible buckets, lifecycle policies, IAM, service accounts)
Job Responsibility
Job Responsibility
  • Complete final configuration and hardening of the Globus Connect Server (GCS v5) deployment on GCP Compute Engine VMs within the Data DMZ
  • Configure and validate Globus Storage Gateways and S3 Storage Connectors for ingress and egress GCP buckets
  • Configure Globus collections (Managed and Guest) aligned with Mayo's data access policies and identity provider restrictions
  • Validate end-to-end data transfer workflows including ingress, egress, and staging collection transfers across the Service Connector (SC) boundary into the MCC VPC
  • Configure DNS, authentication flows (OAuth/OpenID Connect via Entra ID), and endpoint registration within Globus.org
  • Onboard initial research user groups to the Globus platform, providing hands-on support for first transfers
  • Develop and document standardized user onboarding procedures, including Sailpoint provisioning workflows and Globus Web App access
  • Provide Tier 1/2 operational support for Globus users — troubleshooting transfer failures, stalled transfers, permission issues, connectivity problems, and performance optimization
  • Coordinate with Globus vendor support (University of Chicago) for escalated issues using the established Globus support process
  • Monitor and maintain Globus Connect Server VM health, GCS services, and GCP bucket lifecycle policies
What we offer
What we offer
  • medical
  • vision
  • dental
  • life
  • disability insurance
  • paid time off (including holidays, parental leave, and sick leave, as required by law)
  • Fulltime
Read More
Arrow Right

Senior Architect - M365

Location
Location
United States , Iselin; Phoenix; Plano; Johnston
Salary
Salary:
111803.00 - 167704.00 USD / Year
citizensbank.com Logo
Citizens Bank
Expiration Date
June 30, 2026
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Systems, or related field (or equivalent experience)
  • 2–5 years in IT solution design or architecture roles, with at least 1–2 years working with Microsoft technologies
  • Knowledge of Microsoft 365 services (Exchange Online, SharePoint Online, Teams, OneDrive, Teams phone) and governance
  • Experience with Power Platform usage, Administration and governance frameworks to control the platform (Power Apps, Power Automate, Power BI, Copilot studio, environments)
  • Proficiency in API design and integration (REST, JSON, Microsoft Graph) and data integration tools
  • Experience with Terraform for provisioning and managing cloud resources
  • Proficient in utilizing tools such as Microsoft Endpoint Manager (Intune) and managing a variety of operating systems
  • Experienced in Windows administration, Virtual Desktop Infrastructure (VDI) solutions including Citrix and Azure Virtual Desktop (AVD), Mac OS and Jamf as well as mobile device management
  • Understanding of networking, security, and compliance in regulated industries
  • Understanding of AWS, Azure, and GCP cloud environments
Job Responsibility
Job Responsibility
  • Identify and deliver outcomes that meet business and technical requirements while balancing objectives and constraints
  • Apply rapid prototyping to validate design concepts, engage stakeholders early, and reduce delivery risk through iterative development
  • Partner with product owners, scrum masters, and managers to align on goals, mentor colleagues, assist in road map development, and clarify architectural concepts
  • Provide guidance and occasional hands-on involvement to ensure successful implementation
  • Evaluate emerging technologies and recommend adoption where appropriate
What we offer
What we offer
  • competitive pay
  • comprehensive medical, dental and vision coverage
  • retirement benefits
  • maternity/paternity leave
  • flexible work arrangements
  • education reimbursement
  • wellness programs
  • Fulltime
Read More
Arrow Right

Senior GenAI Engineer

Hands‑on GenAI Engineer working on canonical LLM APIs—designing OpenAI‑compatibl...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • AI Gateways like KONG, Portkey, SSE/streaming, quota/rate limits
  • OpenAI‑compatible schemas
  • OpenAPI
  • versioning/deprecation
  • OAuth2 (client & user‑context), mTLS, token binding
  • LangGraph/ADK
  • Trace propagation
  • Python, Java, devin/github copilot
Job Responsibility
Job Responsibility
  • Design and maintain canonical LLM APIs (OpenAI‑compatible chat/generate, search, ingest, embeddings, responses, interactions) with multi‑model backends, consistent across on‑prem and cloud
  • Operate Gateway for LLM traffic (SSE/streaming), set TPS and payload SLOs, and coordinate capacity allocations with enterprise gateway owners
  • Implement authN/Z patterns: OAuth2 client credentials and user‑context flows
  • enforce mTLS and device/tls‑bound tokens to eliminate key sharing
  • Define versioning & deprecation policy
  • publish change notices and maintain compatibility matrices for SDKs and proxies
  • Build developer onboarding paths
  • Integrate Open telemetry (tracing/evals) into gateway and APIs
  • propagate correlation IDs and tags for spaces/projects
  • Evolve SDKs to standardize auth, observability, signal endpoints, and registry updates for LangGraph/ADK
Read More
Arrow Right

Senior GenAI Engineer

Hands‑on GenAI Engineer working on canonical LLM APIs—designing OpenAI‑compatibl...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • AI Gateways like KONG , Portkey, SSE/streaming, quota/rate limits
  • OpenAI‑compatible schemas
  • OpenAPI
  • versioning/deprecation
  • OAuth2 (client & user‑context), mTLS, token binding
  • LangGraph/ADK
  • Trace propagation
  • Python, Java, devin/github copilot
Job Responsibility
Job Responsibility
  • Design and maintain canonical LLM APIs (OpenAI‑compatible chat/generate, search, ingest, embeddings, responses, interactions) with multi‑model backends, consistent across on‑prem and cloud
  • Operate Gateway for LLM traffic (SSE/streaming), set TPS and payload SLOs, and coordinate capacity allocations with enterprise gateway owners
  • Implement authN/Z patterns: OAuth2 client credentials and user‑context flows
  • enforce mTLS and device/tls‑bound tokens to eliminate key sharing
  • Define versioning & deprecation policy
  • publish change notices and maintain compatibility matrices for SDKs and proxies
  • Build developer onboarding paths
  • Integrate Open telemetry (tracing/evals) into gateway and APIs
  • propagate correlation IDs and tags for spaces/projects
  • Evolve SDKs to standardize auth, observability, signal endpoints, and registry updates for LangGraph/ADK
Read More
Arrow Right

Security Architect

Location
Location
Portugal , Matosinhos Municipality; Lisbon
Salary
Salary:
Not provided
https://www.tui.com Logo
TUI
Expiration Date
June 17, 2026
Flip Icon
Requirements
Requirements
  • You have a demonstrable track record of delivering Zero Trust control implementation - not just designing it - across enterprise environments, with practical understanding of the CISA Zero Trust Maturity Model across all five pillars and the ability to assess current state against Traditional, Initial, Advanced, and Optimal maturity stages
  • Evidence of driving security control implementation through delivery teams in large, complex organisations is essential, as you distinguish between controls that have been deployed and verified versus those that have only been documented or recommended, actively rejecting activity-based metrics in favour of outcome-based measurement
  • Hands-on experience with Microsoft Security Exposure Management, Microsoft Secure Score, Maester, and the Microsoft Defender suite enables you to extract control status data, interpret attack path exposure metrics, and use tooling output to drive delivery prioritisation and evidence compilation
  • Your proficiency with Entra ID, Intune, Defender for Endpoint, and Defender for Office 365 as control implementation platforms means you can provide technical depth across Identity, Devices, Networks, Applications, and Data pillar-specific control areas
  • You're able to identify and challenge shared ownership arrangements that prevent control implementation, assigning single accountable owners to controls and holding them to delivery commitments, understanding that a control without a named, funded owner is an unmanaged risk
  • Experience working within an OKR framework where key results are tied to measurable security outcomes is important, as you understand that programme maturity is measured by controls implemented and attack surface reduced - not by documents produced or workshops delivered
  • Operating within or alongside a formal security architecture governance function comes naturally to you, as you contribute to quarterly reporting cadences and multi-team delivery coordination across complex enterprise environments
  • You're highly autonomous and able to identify what needs to happen next without being directed, taking ownership of blockers and working comfortably across organisational boundaries to challenge delivery teams when progress is below expectation
  • Being comfortable with ambiguity in an actively evolving programme is essential, as you adjust your approach based on what measurement data shows and stay motivated by reducing actual risk rather than achieving compliance posture
Job Responsibility
Job Responsibility
  • Drive control implementation across all five CISA Zero Trust pillars - dentity, Devices, Networks, Applications and Workloads, and Data - translating pillar OKR commitments into specific, sequenced control deployments with defined owners, timelines, and measurable success criteria
  • Own the measurement framework for Zero Trust maturity progression, using Microsoft Security Exposure Management, Maester security assessments, and Microsoft Secure Score to track control status changes, maintain time-series data, and escalate stalled controls before they impact quarterly OKR targets
  • Work directly with pillar owners - Identity, Devices, Network, Applications, and Data leads - to convert high-priority workshop outputs into active delivery backlogs, challenging shared ownership arrangements and ensuring each control has a single named owner with budget authority
  • Provide technical depth across pillar-specific control areas including Conditional Access policy design, Entra ID Governance, PIM, phishing-resistant MFA deployment, trusted device strategy, Intune policy enforcement, network segmentation, secure remote access patterns, application ownership models, Entra SSO integration, API security governance, and data loss prevention aligned to the Secure Future Initiative
  • Triage Microsoft Secure Score recommendations against pillar OKR priorities, assign each recommendation to the correct pillar owner with delivery timelines, track closure rates, and separate high-impact risk-reducing controls from low-value compliance activities
  • Generate evidence of risk reduction for board reporting and cyber insurance renewal, presenting Zero Trust progress in terms of attack surface change and business impact rather than framework terminology
What we offer
What we offer
  • Attractive remuneration
  • Exclusive travel perks & discounts
  • Extensive health & wellbeing support
  • Flexible working
  • Access the TUI Tech Learning Hub
  • Opportunities to upskill, reskill and grow your career
  • Participate in our tech communities and collaborate on global projects and teams
  • Get involved with incredible local charity and sustainability initiatives like the TUI Care Foundation and the Sustainable Tech Community
  • Fulltime
!
Read More
Arrow Right

Lead Information Systems Security Officer (ISSO)

We are seeking an experienced and driven Lead Information Systems Security Offic...
Location
Location
United States , Colorado Springs
Salary
Salary:
97016.00 - 168692.00 USD / Year
arcfield.com Logo
Arcfield
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree (8-10 years' exp). Master's degree (6-8 years' exp) or a PhD (3-5 years' exp) in Computer Science, Information Security, Cybersecurity, or a related discipline (or equivalent work experience)
  • 7+ years of experience in cybersecurity or system security-related roles
  • 3+ years of experience in leadership, mentoring, or team management roles in a security-focused environment
  • Proven hands-on experience with security operations, policies, and frameworks
  • Must possess and maintain an ACTIVE TS/SCI CLEARANCE
  • Strong knowledge of cybersecurity frameworks and standards, such as NIST Risk Management Framework (RMF), FISMA, ISO 27001/27002, and GDPR
  • Thorough understanding of operating systems security (Windows, Linux, and Unix), network protocols, and security tools such as firewalls, VPNs, IDS/IPS, and endpoint protection
  • Experience using vulnerability scanning tools such as Nessus, Qualys, or Rapid7, and security information and event management (SIEM) tools like Splunk or LogRhythm
  • Scripting and automation experience with languages like Python, PowerShell, or Bash is preferred
  • Familiarity with cloud security best practices for platforms such as AWS, Microsoft Azure, or Google Cloud Platform
Job Responsibility
Job Responsibility
  • Manage and oversee a team of ISSOs, analysts, and engineers
  • Provide mentorship, training, and guidance for developing team members' skills and expertise
  • Assign and prioritize security-related tasks and initiatives
  • Drive the implementation of best practices for system security
  • Serve as the primary SME on security policies, frameworks, and applicable standards
  • Develop, implement, and maintain System Security Plans (SSPs)
  • Lead periodic risk assessments and vulnerability assessments
  • Manage the certification and accreditation (C&A) process
  • Conduct security audits and reviews
  • Monitor and assess security-related control systems
What we offer
What we offer
  • Health Insurance
  • Life Insurance
  • Paid Time Off
  • Holiday Pay
  • Short Term and Long-Term Disability
  • Retirement and Savings
  • Learning and Development opportunities
  • wellness programs
  • Fulltime
Read More
Arrow Right

Senior GenAI Engineer

We are currently seeking a Senior GenAI Engineer to join our team in Bangalore, ...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • AI Gateways like KONG, Portkey, SSE/streaming, quota/rate limits
  • OpenAI‑compatible schemas
  • OpenAPI
  • versioning/deprecation
  • OAuth2 (client & user‑context), mTLS, token binding
  • LangGraph/ADK
  • Trace propagation
  • Python, Java, devin/github copilot
Job Responsibility
Job Responsibility
  • Design and maintain canonical LLM APIs (OpenAI‑compatible chat/generate, search, ingest, embeddings, responses, interactions) with multi‑model backends, consistent across on‑prem and cloud
  • Operate Gateway for LLM traffic (SSE/streaming), set TPS and payload SLOs, and coordinate capacity allocations with enterprise gateway owners
  • Implement authN/Z patterns: OAuth2 client credentials and user‑context flows
  • enforce mTLS and device/tls‑bound tokens to eliminate key sharing
  • Define versioning & deprecation policy
  • publish change notices and maintain compatibility matrices for SDKs and proxies
  • Build developer onboarding paths
  • Integrate Open telemetry (tracing/evals) into gateway and APIs
  • propagate correlation IDs and tags for spaces/projects
  • Evolve SDKs to standardize auth, observability, signal endpoints, and registry updates for LangGraph/ADK
Read More
Arrow Right