Job Description
Job Description
We are seeking an experienced Endpoint Engineer with significant SCCM and Microsoft Intune experience to join our team on a contract supporting the Department of Homeland Security. In this role, you will be part of a dynamic team of Systems and Desktop Engineers and security specialists with experience in Azure, Microsoft Intune, Windows, System Center Configuration Manager (SCCM/MECM), Enterprise Patching, PKI/Certificates, Active Directory, Virtualization, and advanced scripting. You will work across endpoint management and server operations teams to ensure adherence to customer SLAs while driving automation through cloud-native solutions and testing of new/emerging technologies to deliver faster deployments and decreased workload.
Responsibilities:
- Lead Microsoft Intune administration and engineering, including policy creation and management, application deployment, device compliance, and conditional access configurations.
- Design and implement hybrid cloud solutions leveraging Azure AD and on-premises Active Directory for seamless identity management.
- Utilize Azure Automation and Intune to manage and secure cloud-based and on-premises Windows workstations and servers, ensuring they are patched to correct levels.
- Develop and maintain Azure-based system templates and images for rapid deployment.
- Manage and maintain Windows Server 2016/2019/2022 systems and Windows 11 PC images in both Azure and on-premises environments.
- Identify, analyze, and resolve system problems with both short-term workarounds and long-term cloud-based solutions.
- Write advanced PowerShell scripts and leverage Azure Functions to automate systems administration tasks across cloud and on-premises environments.
- Implement and manage Microsoft Endpoint Manager (Intune + SCCM) for comprehensive endpoint management.
- Design and implement Azure-based security solutions, including Azure Security Center and Azure Sentinel.
- Provide guidance and work leadership to less-experienced cloud and systems engineers.
Required Qualifications:
- Ability to attain DHS EOD
- BA or BS + 7 years of applicable experience
- 5+ years SCCM experience supporting software packaging and patching
- 5+ years Intune Autopilot administration
- Strong working knowledge of SCCM and Intune to include device enrollment, policy management, application deployment, compliance enforcement, and conditional access
- Solid understanding of VMware vCenter
- Functional understanding of Microsoft SQL Server and Active Directory
- Expertise in MDT and SCCM (capturing images (.WIM), creating packages, advertisements, task sequences, operating system deployment (OSD) and queries)
- Solid knowledge of PowerShell scripting to automate tasking and customize configurations
- Expertise with IAVA process including CYBERCOM release process, testing, approval and deployment processes
- Solid knowledge of Active Directory Security Groups, OUs, DNS, and GPO management
- Solid Windows troubleshooting skills
- Strong understanding of networking concepts including VPN and certificate-based authentication
- Microsoft Certified Endpoint Administrator Associate
- SCCM Certification
Desired Qualifications:
- ITIL v4 certification
- Microsoft Endpoint Manager Specialist Certified
- Microsoft 365: Modern Desktop Administrator Associate Certified
- Autopilot experience
- Cloud services familiarity, particularly Microsoft Azure