IT Systems Engineer, Client Platform Engineer

Details

Anthropic’s mission is to create reliable, interpretable, and steerable AI systems. The Endpoint team (Client Platform Engineering) treats Anthropic’s device fleet as a distributed platform. The team runs an MDM as a production service and manages device configuration as code. Policies, configuration profiles, queries, remediation scripts, and software ship through pull requests, CI, a staging environment, and a canary group before they reach the fleet. The fleet spans macOS, Windows, and a growing mobile footprint.

You will own the platform end to end: the infrastructure underneath the MDM, the configuration on top of it, the patching and software pipelines that keep thousands of devices patched and secure, and the telemetry that tells what is actually true on every device. Build zero touch provisioning, manage rapid patching enforcement schedules, and build automation and Claude-driven workflows to eliminate operational toil. The role sits at the intersection of security and developer experience and includes partnering with Security teams on hardening, compliance controls, and detection and response.

Responsibilities

• Own endpoint configuration as code: author, review, test, and progressively roll out MDM policies, configuration profiles, and remediation scripts across macOS, Windows, and mobile, with canary stages and rollback built in
• Operate the MDM platform as a production service, including infrastructure as code, observability, upgrades, and incident response
• Build patch management automation with rapid enforcement timelines while maintaining good user experience
• Design zero touch provisioning to turn a sealed box into a productive machine on day one
• Run software distribution for the fleet, including managed app distribution for mobile devices
• Turn fleet telemetry into policy, dashboards, and early drift warnings, and build automation with Claude that removes operational toil
• Partner with Corporate Security on endpoint hardening, binary authorization, and compliance controls
• Serve as the deep escalation tier for endpoint issues IT Operations can’t resolve

Requirements

• 8+ years building secure IT systems in complex environments (or at Staff level, have led multi-team projects that changed how an organization operates)
• Experience managing endpoint fleets of thousands of macOS and Windows devices through a modern MDM
• Treat endpoint configuration as code (scripted deployments or full GitOps) rather than only clicking in consoles
• Deep expertise on one platform (examples given: macOS internals such as launchD, configuration profiles, TCC, system extensions; or Windows internals such as CSPs, the registry, PowerShell, BitLocker) and hands-on experience with the other
• Strong problem solving with multiple stakeholders and clear technical communication
• Product-engineering rigor for IT Engineering and successful delivery of complex projects from conception to production
• Clear documentation practices as a natural part of work

Strong candidates may also

• Have operated an MDM or device management platform as a service (not only consumed as SaaS)
• Have worked with open source endpoint and device management tooling
• Have built automated, progressive rollout systems with promotion gated on telemetry
• Have experience running infrastructure as code in a public cloud
• Have managed a mixed fleet across macOS, Windows, and mobile, with deep expertise on at least one platform
• Bring proficiency in Swift or Go for building endpoint tools
• Have used LLMs to automate operational work, or be excited to make Claude a teammate

Technical Skills

• Python, shell scripting, and PowerShell
• macOS or Windows internals (depth on one, working knowledge of the other)
• Querying live device state at fleet scale and turning telemetry into policy and alerts
• Modern MDM platforms (Jamf, Intune, Workspace ONE, or equivalent)
• GitOps, CI/CD for configuration management, and infrastructure as code
• Public cloud fundamentals (containers, managed databases, CDN, monitoring)
• Device lifecycle automation (zero touch enrollment, patching, software distribution)
• Endpoint security fundamentals

Logistics

• Locations listed: Boston, MA; New York City, NY; Washington, DC; and Remote-friendly (travel required)
• Minimum education: Bachelor’s degree or equivalent combination of education, training, and/or experience
• Visa sponsorship: Anthropic states they do sponsor visas and retain an immigration lawyer to assist, though not every role/candidate will be successfully sponsored
• Location-based hybrid policy: currently expect staff to be in one of our offices at least 25% of the time (some roles may require more office time)

Compensation

• Annual Salary: $325,000 - $360,000 USD

Benefits

• Competitive compensation and benefits, optional equity donation matching, generous vacation and parental leave, flexible working hours, and office space for collaboration.

How we work

Anthropic emphasizes collaborative, large-scale AI research with communication across teams. The organization values impact and works as a cohesive team on a few large research efforts. Candidates are encouraged to apply even if they do not meet every qualification.