colton@coltonfouch.com ~ $

Resume

Colton Fouch

Platform Manager · Ventura, CA · info@coltonfouch.com · LinkedIn

Summary

Platform Manager with 7+ years of experience architecting enterprise endpoint strategy across Jamf Pro, Microsoft Intune, and SCCM for 2,000+ endpoints. Specializes in zero-touch macOS/iOS deployment, identity modernization (Platform SSO, Jamf Connect), cloud infrastructure migration, and AI-powered IT automation. Proven track record in security compliance, patch automation, and delivering broadcast-grade live production infrastructure for global executive communications.

Experience

Patagonia — Ventura, CA (7+ years)

Platform Manager · Oct 2023 – Present

Own enterprise endpoint strategy and live production infrastructure supporting a global hybrid workforce.

  • Lead MDM architecture across Jamf Pro and Microsoft Intune, ensuring security compliance and seamless device provisioning for 2,000+ endpoints
  • Engineer zero-touch deployment workflows for macOS, iOS, and iPadOS using Jamf Setup Manager and Apple Business Manager, reducing device provisioning time from hours to under 20 minutes and accelerating employee onboarding
  • Architect and execute Jamf Pro migration to Azure cloud infrastructure, modernizing backend scalability and availability for enterprise device management
  • Implement macOS Platform SSO with Secure Enclave to modernize identity authentication, eliminating legacy password dependency and aligning with zero-trust security principles
  • Design and enforce least-privilege admin access model via Jamf Connect and temporary admin workflows, reducing attack surface across managed endpoints
  • Build and maintain Apple Content Caching infrastructure, reducing bandwidth consumption and accelerating software delivery
  • Drive macOS and iOS patch management strategy and endpoint compliance using Jamf Pro, maintaining security posture across all Apple-managed platforms
  • Integrate Palo Alto SSL inspection into endpoint security posture, ensuring encrypted traffic visibility and policy enforcement
  • Act as Tier 3 escalation engineer for cross-functional macOS, Windows, and infrastructure incidents, owning resolution from diagnosis through root cause documentation
  • Architect and operate broadcast-grade live streaming infrastructure for company-wide town halls and executive communications, integrating OBS, ProPresenter, and Microsoft Teams for seamless hybrid events reaching thousands of employees globally

Jamf Pro · Jamf Connect · Jamf Setup Manager · Intune · Active Directory · OBS · ProPresenter · Palo Alto · PowerShell · Bash

IT System Administrator II · Oct 2022 – Oct 2023

Promoted to expand device management scope and lead system administration initiatives across North America.

  • Managed hybrid Windows and macOS environment spanning 2,000+ endpoints using SCCM, Intune, and Jamf Pro
  • Developed and maintained automated deployment scripts, configuration profiles, and patch workflows using PowerShell and Bash
  • Collaborated with Security team on endpoint hardening, vulnerability remediation, and least-privilege access initiatives
  • Led onboarding standardization efforts, improving provisioning consistency across North America offices

Jamf Pro · SCCM · Intune · PowerShell · Bash · Active Directory

IT Systems Analyst · Sep 2018 – Oct 2022

Provided end-user support for headquarters and remote employees across North America.

  • Resolved technical issues across macOS and Windows platforms via Zendesk ticketing system, maintaining high SLA adherence
  • Administered device enrollment and policy deployment through Jamf Pro and SCCM
  • Supported rapid pandemic-driven expansion of the hybrid work model, scaling remote endpoint management and access for a distributed workforce

Zendesk · Jamf Pro · SCCM

Guitar Center — Westlake Village, CA (2 years)

IT Helpdesk Technician · Oct 2016 – Sep 2018

Delivered technical support for corporate headquarters and 280+ retail locations nationwide.

  • Provided multi-channel IT support via phone, email, chat, and in-person for corporate and field employees
  • Administered Active Directory including user provisioning, security group management, and access control
  • Managed Mac fleet using Jamf Pro, handling device enrollment, imaging, and software deployment
  • Participated in on-call rotation providing 24/7 critical support coverage

Active Directory · Jamf Pro · Hardware Support

Projects

Tech-Driven Deployments with Jamf Setup Manager Designed and implemented a fully automated, zero-touch deployment workflow for macOS using Jamf Pro, Jamf Setup Manager, and Apple Business Manager. Reduced device provisioning time from hours to under 20 minutes, dramatically accelerating employee onboarding at scale.

Jamf Pro · Jamf Setup Manager · Apple Business Manager · macOS

Platform SSO & Identity Modernization Implemented macOS Platform SSO with Secure Enclave authentication and deployed Jamf Connect to enforce least-privilege admin access across managed endpoints. Eliminated legacy password-based authentication and aligned identity posture with zero-trust security principles.

Jamf Connect · Platform SSO · Secure Enclave · Azure AD/Entra ID · macOS

Apple Content Caching Infrastructure Deployed and maintained Apple Content Caching servers, reducing WAN bandwidth consumption and accelerating software and update delivery for macOS and iOS devices company-wide.

Apple Content Caching · macOS · Networking · DNS/DHCP

Live Streaming Infrastructure for Town Halls Architected and operate a reliable broadcast-grade live streaming setup for company-wide all-hands meetings and executive communications. Integrated OBS, ProPresenter, and Microsoft Teams to deliver seamless hybrid events for thousands of employees globally.

OBS · ProPresenter · Microsoft Teams · Networking · A/V Hardware

Endpoint Compliance & Patch Automation Built a macOS and iOS patch management strategy using Jamf Pro, automating compliance reporting and remediation workflows to maintain security posture across Apple-managed endpoints.

Jamf Pro · macOS · iOS/iPadOS

Skills

CategoryTechnologies
Device ManagementJamf Pro · Jamf Connect · Jamf Setup Manager · Microsoft Intune · SCCM · Apple Business Manager
PlatformsmacOS · iOS/iPadOS · Windows · Apple Silicon
InfrastructureActive Directory · Azure AD/Entra ID · Networking · DNS/DHCP · Palo Alto · SSL Inspection
CloudMicrosoft Azure · Jamf Cloud · Apple Business Manager
Automation & AIMicrosoft Copilot Studio · PowerShell · Bash · Jamf Scripts · 1Password CLI
Live ProductionOBS Studio · ProPresenter · Microsoft Teams · A/V Hardware
SecurityPlatform SSO · Secure Enclave · Endpoint Hardening · Patch Compliance · Least-Privilege Access

Certifications

  • Jamf Certified Tech — Jamf
  • Jamf Certified Admin — Jamf
  • MD-102: Endpoint Administrator — Microsoft
  • CompTIA Network+ — CompTIA