Endpoint & MDM Manager

About the role

SumUp is looking for an Endpoint & MDM Manager to join our Corporate IT team. In this role, you will be the technical lead and architect for our global device landscape, acting as the bridge between high-level security requirements and day-to-day operations. Your mission is to transform our high-volume environment into a "silent" operation where every device is compliant, tracked, and managed without manual intervention.  You will manage a fleet of 3,800+ devices across multiple regions, with a roughly 2:1 MacBook to Windows split, requiring deep fluency in both ecosystems.

You will join a global team consisting of System Administrators, and external admins across the EU and the Americas, reporting to the Head of Global IT. You will build a team, create detailed documentation, and provide strategic training to the wider global team.

What you’ll do

• Conduct a comprehensive audit of our current Azure/Entra setup and lead the "clean up" to ensure our security and compliance posture is top-tier.
• Review and manage our Zero-touch deployment strategy using ABM, DEP, and Windows Autopilot to ensure a perfect first-day experience for every new hire.
• Drive the adoption of AI-powered tooling and automation to reduce manual device management toil and scale the team's operational output.
• Partner closely with the Systems Engineering function to ensure device compliance policies and identity controls are aligned, with clear ownership boundaries between endpoint and identity.
• Solve the complex puzzle of hardware/software lifecycles by integrating the CMDB with our Service Desk, bringing automated asset recovery and sustainable e-wasting to life.
• Act as the primary stakeholder for Security and People teams, ensuring 100% device compliance and frictionless onboarding/offboarding.
• Determine if and when our infrastructure is ready for its next evolution, managing migrations from current setups to specialized tools like Kandji (Iru).
• Collaborate with Finance and Procurement on hardware budgets, leasing contracts, and asset lifecycle costs.

You’ll be a great fit for this role if

• You have 5+ years of experience in a Senior IT Operations or Systems Engineering role, with a track record of acting as a technical lead or mentor.
• You are an expert in Azure and Entra ID, with a deep understanding of managing identity and devices within the Microsoft ecosystem.
• You have mastered Zero-Touch Deployment and have proven experience architecting solutions with Windows Autopilot and Apple Business Manager.
• You have successfully navigated MDM migrations, specifically moving fleets to specialized tools like Kandji or Jamf.
• You possess expert-level knowledge of both macOS and Windows 10/11 troubleshooting and configuration.
• You have a "Systems-Thinking" mindset, preferring to build automated solutions rather than applying "band-aid" fixes to root causes.
• Comfortable with scripting and automation (Bash, PowerShell, or Python) - you don't need to be a developer but you should be able to build and maintain your own tooling.
• You are energized by "cleaning up": You aren't looking for a mature, fully documented fleet and ideally want to be the one to build the global blueprint for how SumUp scales.

Nice to have

• Hands-on experience with specialized Mac MDM tools like Kandji, Jamf, or Mosyle.
• Experience in Fintech or regulated environments (understanding SOC2 or ISO compliance).
• Experience negotiating and managing contracts with international hardware and leasing partners.

Why you should join SumUp:

Opportunity to work with SumUppers globally on large-scale fintech products used by millions of businesses worldwide, from our Berlin office. This involves an office-first setup.

pythongoawsazureaiproduct