Senior Endpoint Engineer job in Chicago

The Senior Endpoint Engineer serves as a technical expert and process leader, designing scalable and secure endpoint solutions across multiple platforms. This role leverages Intune, Autopilot, MECM, and JAMF to deliver a consistent, secure, and automated device experience. The Senior Engineer acts as a self-starter and mentor, ensuring all solutions are well-documented, repeatable, and aligned with enterprise standards., * Build automation and orchestration scripts using PowerShell and Graph API

• Design and implement Autopilot workflows for zero-touch provisioning and lifecycle automation.
• Architect and maintain Intune configurations, compliance policies, and application delivery pipelines.
• Lead initiatives for co-management with MECM and integration with JAMF for macOS.
• Support large scale hardware and software rollout projects
• Own maintenance of optimized operating system images for all hardware types within our environment
• Develop and maintain thorough documentation, including architecture diagrams and SOPs.
• Collaborate with Security and Infrastructure to enforce device hardening and endpoint compliance.
• Own and troubleshoot escalations involving Intune, Autopilot, and hybrid join scenarios.
• Mentor junior engineers in documentation, automation, and enterprise-scale thinking.
• Proactively identify gaps, propose enhancements, and drive technical improvements.
• Participate in change control, incident, and problem management processes.

• 5-8 years of experience in endpoint or infrastructure engineering.
• Deep expertise in Intune, Autopilot, and Azure AD device management.
• Strong scripting and automation background (PowerShell, Graph API, or similar).
• Proven experience and deep knowledge of best practices in 3rd party software packaging and deployment at scale.
• Proven ability to maintain and enforce documentation standards.
• Familiarity with MECM, JAMF, and hybrid co-management.
• Knowledge of conditional access, EDR, BitLocker, and compliance baselines.
• Demonstrated self-direction and ability to deliver high-quality, scalable solutions.
• Excellent cross-team collaboration and stakeholder communication.
• Certifications: Microsoft Certified: Endpoint Administrator, JAMF Certified Admin, ITIL v4 preferred.

*This role is onsite 4 days/week in our Chicago office (Fulton Market District)

• A generous benefits package that includes paid time off, health, dental, vision, and 401(k) savings plan with match
• Salary: $100,000-130,000/year

The Aspen Group (TAG) is one of the largest and most trusted retail healthcare business support organizations in the U.S., supporting over 23,000 healthcare professionals and team members at more than 1,150 locations across 48 states. Our five supported healthcare practices operate under the brands Aspen Dental, ClearChoice, WellNow, Chapter Aesthetic Studio, and Lovet. We're committed to enabling healthcare professionals to focus on patient care while we handle the business operations that support them.