In short

In the dynamic landscape of On, the tech thrives much like a spirited runner: always moving, always improving. We are building technology that continues to supercharge the growth of On, helping to ignite the human spirit through movement.

The Endpoint Security Lead will be responsible for designing, implementing, and managing advanced endpoint security strategies to protect enterprise devices and users. You will ensure continuous compliance with internal security policies and regulatory requirements while leveraging JAMF, Intune, and MacOS security technologies to enforce security controls across all endpoints.

This role requires deep technical expertise in endpoint security solutions, strong leadership in defining security posture for diverse device environments (macOS, Windows, mobile), and the ability to drive automation, integration, and proactive threat mitigation across the organization.

Your Mission

  • Endpoint Security Strategy & Architecture
  • Design and implement advanced endpoint security strategies to safeguard corporate devices, ensuring resilience against modern threats.
  • Define and enforce Zero Trust-based endpoint security architectures, implementing least privilege models and adaptive security controls for enterprise endpoints.
  • Develop and maintain endpoint security policies, standards, and guidelines aligned with industry best practices (CIS, NIST, ISO 27001).
  • Endpoint Security Technology Implementation & Management
  • Oversee JAMF Pro and Microsoft Intune for MacOS and Windows endpoint security management, ensuring policy enforcement, patching, and compliance monitoring.
  • Deploy and manage endpoint protection solutions (EDR, XDR, AV) and ensure continuous threat visibility and mitigation.
  • Develop and enforce endpoint hardening standards and security baseline configurations across macOS, Windows, and mobile devices, incorporating CIS benchmarks, least privilege access models, and advanced threat protection.
  • Automate security policy enforcement and device compliance workflows to reduce risk exposure and improve efficiency.
  • Ensure seamless integration of endpoint security tools with SIEM, SOAR, and identity platforms (e.g., Okta, Azure AD) for comprehensive security operations.
  • Leverage APIs and scripting (e.g., Python, PowerShell) to automate security tasks and enhance endpoint security operations.
  • Threat Detection, Incident Response & Automation
  • Work closely with SOC and Threat Management teams to enhance endpoint detection, response, and remediation capabilities.
  • Develop and optimize custom detection rules and endpoint logging strategies to improve visibility and threat identification.
  • Automate incident response workflows, integrating endpoint security tools with SIEM/SOAR platforms to accelerate threat containment and mitigation.
  • Lead endpoint-related security investigations, ensuring rapid containment and recovery from security incidents.
  • Training and Mentoring: Providing training and mentoring to team members, fostering a culture of learning and knowledge sharing within the organisation.
Group of girls smiling
  • Man and woman sat at desks talking
  • Open planned office with men and women sat on a a large curved sofa
  • Group of runners talking outside the office
  • A team of people sat on the steps with a view of mountains outside the office.
  • Two women smiling at each other in a meeting room with large curved windows
  • A group of people sat around a table looking at large design papers
  • 3 men sat around with laptops smiling at each other
  • a large group of runners holding an On flag smiling at the camera
  • Man and woman sat at desks talking
  • Open planned office with men and women sat on a a large curved sofa
  • Group of runners talking outside the office
  • A team of people sat on the steps with a view of mountains outside the office.
  • Two women smiling at each other in a meeting room with large curved windows
  • A group of people sat around a table looking at large design papers
  • 3 men sat around with laptops smiling at each other
  • a large group of runners holding an On flag smiling at the camera
  • Man and woman sat at desks talking
  • Open planned office with men and women sat on a a large curved sofa
  • Group of runners talking outside the office
  • A team of people sat on the steps with a view of mountains outside the office.
  • Two women smiling at each other in a meeting room with large curved windows
  • A group of people sat around a table looking at large design papers
  • 3 men sat around with laptops smiling at each other
  • a large group of runners holding an On flag smiling at the camera

Your story

  • 8+ years of experience in Endpoint Security, Endpoint Management, or IT Security Engineering roles.
  • Expertise in JAMF Pro for MacOS security management and Microsoft Intune for Windows & mobile device security.
  • Strong knowledge of macOS security architecture, MDM (Mobile Device Management), and endpoint hardening techniques.
  • Hands-on experience with Endpoint Protection Platforms (EPP), Endpoint Detection & Response (EDR/XDR), and Zero Trust principles.
  • Proficiency in automation & scripting (Python, PowerShell, Bash) for endpoint security configurations and policy management.
  • Familiarity with compliance frameworks (ISO 27001, NIST 800-53, CIS Benchmarks, SOC2, GDPR).
  • Experience integrating endpoint security solutions with SIEM, SOAR, and identity platforms..
  • Strong analytical and problem-solving skills, with the ability to troubleshoot endpoint security incidents and compliance issues.
  • Excellent communication skills to articulate security concepts to technical and non-technical stakeholders.
Three On colleagues eating lunch together

About the Team

As an integral part of the Information Security team at On, you'll find yourself at the heart of a fast-paced, diverse environment. Our ecosystem thrives on collaboration — a confluence of curious minds challenging and learning from one another, always seeking the uncharted. Here, we venture into new territories of technology and security, continuously refining our approach and embracing challenges head-on.

See more
A man in a blue shirt and a white t-shirt with a headset on is standing with his arms crossed and holding his chin looking into the distance
A man in a blue shirt and a white t-shirt with a headset on is standing with his arms crossed and holding his chin looking into the distance

Explorer

Explorer

Woman laughing as she plays ping pong in the office!

Our team exists to think differently. Wild curiosity and a thirst for knowledge keeps moving our tech forward. There are no boxes here. We’re always dreaming of what’s possible – and searching for new ways to get there. 

Learn about out Spirits
  • Portrait of a woman smiling in the On Zürich office

    Gioia

    Technical Product Team, Zürich

    My journey has evolved for sure and, actually, change can lead to infinite possibilities. Those core values that were there when I joined are still here today and I really find them extraordinary every day.
  • A man standing in a modern office looking at the camera, smiling slightly.

    Vivek Juneja

    Engineering, Berlin

    We’re closely connected to the whole business. Every day, we’re making quick decisions to improve the customer experience. Because these live changes impact the whole business, we deeply respect individual opinion and what others think about the end customer experience.
Happy women smiling and chatting in the office

What we offer

On is a place that is centered around growth and progress. We offer an environment designed to give people the tools to develop holistically – to stay active, to learn, explore and innovate. Our distinctive approach combines a supportive, team-oriented atmosphere, with access to personal self-care for both physical and mental well-being, so each person is led by purpose.

On is an Equal Opportunity Employer. We are committed to creating a work environment that is fair and inclusive, where all decisions related to recruitment, advancement, and retention are free of discrimination.

Build the better you

What to expect

We want to set everyone up for success, so here’s the lowdown on how we hire. Our process is a two-way street – bringing you into our culture, while helping us learn how you think.

Our full process can last about eight weeks from application to offer, because we care about getting it right. These steps explain how we usually do things.

Before you get started, feel free to consider if you want to work with us. Strange question? Well, we give people a lot of space to navigate their day-to-day and that style isn't for everyone. We want you to be passionate about what you do and be sure this is the right fit. Because when skills and passion combine – it creates that 'Wow' moment.