Senior Windows Endpoint Engineer (ID:3498)

• Manage end-to-end administration of Microsoft Intune and SCCM, including device enrollment, configuration, application deployment, patch management, and reporting.
• Lead device management modernization initiatives, including Windows Autopilot implementation, co-management deployment, and migration from legacy GPO/SCCM environments to modern Intune-based management.
• Design, implement, and maintain endpoint security solutions, including Microsoft Defender for Endpoint, BitLocker encryption, compliance policies, Conditional Access, and security baselines.
• Administer and optimize SCCM components such as Operating System Deployment (OSD), Task Sequences, Software Update Point (SUP), and WSUS integration.
• Develop and maintain PowerShell automation scripts for software packaging, system health checks, remediation, bulk updates, and asset inventory.
• Troubleshoot complex endpoint and device management issues across enterprise environments.
• Collaborate with cross-functional teams including Security, Network, and Service Desk to ensure stable and secure endpoint operations.
• Maintain technical documentation, operational procedures, and knowledge base articles to support governance and operational efficiency.
• Support reporting, analytics, and operational dashboards using tools such as Power BI and SCCM SSRS.
• Participate in ITSM processes including change management and integration with ServiceNow or similar platforms., * Design and implement scalable and secure endpoint management solutions across enterprise environments.
• Automate administrative and operational tasks using PowerShell and automation tools.
• Lead modernization and migration initiatives from traditional device management to cloud-based endpoint management solutions.
• Analyze security risks and implement policies to strengthen endpoint security posture.
• Troubleshoot and resolve complex device, application, and security-related issues.
• Manage multiple projects and operational priorities simultaneously.
• Collaborate effectively with technical and non-technical stakeholders across global teams.
• Develop and maintain comprehensive technical and operational documentation.

What We Bring to the Table:

• Opportunities to work on enterprise-scale endpoint modernization and cloud transformation initiatives.
• Exposure to advanced Microsoft security and endpoint management technologies.
• A collaborative and innovation-driven work environment focused on automation and best practices.
• Opportunities to contribute to security enhancements and modern workplace transformation strategies.
• Continuous learning and professional growth in endpoint management, automation, and cloud security technologies.

• 8-10 years of overall experience in endpoint management and enterprise device administration.
• Minimum 5 years of hands-on experience with Microsoft Intune, including configuration profiles, compliance policies, application protection policies, and remediation scripting.
• Strong experience managing BitLocker encryption using Intune and MBAM.
• Advanced expertise in SCCM administration, including OSD, patch management, reporting, and software deployment.
• Proven experience implementing co-management and migrating legacy device management solutions to modern endpoint management frameworks.
• Hands-on experience with endpoint security technologies such as Microsoft Defender for Endpoint, BitLocker at scale, security baselines, and Conditional Access policies.
• Strong scripting skills using PowerShell for automation and operational improvements.
• Experience with Graph API, Azure Automation, and proactive remediation solutions (preferred).
• Familiarity with reporting and analytics using Power BI and SCCM SSRS (preferred).
• Experience working with ITSM tools such as ServiceNow and managing change control processes.
• Strong analytical, troubleshooting, and documentation skills.
• Excellent stakeholder communication and cross-team collaboration abilities.