At Roblox, we are building the tools and platform to empower our community to bring experiences to life, reimagining the way people come together from anywhere in the world. We are looking for a Principal Client Platform Engineer to serve as the technical architect of our global endpoint ecosystem. You will define the long-term strategy for how the fleet scales, secures, and evolves, establishing architectural standards and ensuring thousands of builders have reliable tools.
What You'll Do
- Standardize the global security and management strategy for the entire fleet of macOS, Windows, Linux, Android, iOS, and ChromeOS devices.
- Evolve the deployment pipeline, driving the automated rollout of patches, OS upgrades, and complex certificate lifecycles for all endpoints.
- Lead the hardening of endpoint security posture, partnering with InfoSec to architect automated remediation workflows.
- Deploy advanced observability tools like CrowdStrike and Kolide.
- Design and scale internally owned systems within the hybrid environment.
- Lead complex platform initiatives from architecture through global deployment and operational maturity.
- Collaborate with cross-functional stakeholders across Corporate Engineering, Security, Engineering, and People Ops to align technical roadmaps.
- Navigate and resolve high-level ambiguity, transforming vague technical requirements into scalable engineering solutions.
- Serve as a technical escalation point, diagnosing deep-level architectural failures in hardware, software, and enterprise networking.
- Participate in the team’s on-call rotation, providing senior-level response for critical system availability and high-priority security incidents.
What We're Looking For
- 10+ years of experience in endpoint engineering, systems architecture, or infrastructure engineering.
- Proven experience securing and managing global fleets of 5,000+ devices.
- Deep expertise with endpoint management platforms such as Jamf Pro, Workspace ONE, Google Endpoint Management, Fleet, or Microsoft Intune.
- Strong programming ability in Python, Bash, Go, or Ruby with a focus on automation and systems integration.
- Experience implementing Infrastructure-as-Code and GitOps-based configuration management.
- Advanced knowledge of Identity and Access Management and Zero Trust architecture across Okta, Google Workspace, and Entra ID.
- Strong understanding of PKI, certificate lifecycle management, and enterprise networking security.
- Demonstrated ability to lead large technical initiatives and influence cross-functional stakeholders.
Technical Stack
- Endpoint Management: Jamf Pro, Workspace ONE, Google Endpoint Management, Fleet, Microsoft Intune
- Languages: Python, Bash, Go, Ruby
- Security & Observability: CrowdStrike, Kolide
- Identity: Okta, Google Workspace, Entra ID
Team & Environment
You will report to the Client Services Manager.
Benefits & Compensation
- Compensation range: $230,980—$267,390 USD
- Equity compensation
- Benefits as described on our total rewards page
Work Mode
This role has a hybrid work mode and is based out of our headquarters in San Mateo, CA.
Roblox provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. Roblox also provides reasonable accommodations to candidates with qualifying disabilities or religious beliefs during the recruiting process.
