SUMMARY:
-
POSITION INFO:
ESSENTIAL FUNCTIONS & RESPONSIBILITES:
Device Enrollment and Compliance Configuration
- Set up and test Intune enrollment methods (Windows Autopilot, BYOD, bulk enrollment)
- Define, implement, and maintain compliance policies (encryption, password rules, antivirus, etc.)
- Integrate conditional access with Entra ID (Azure AD) for non-compliant devices
- Ensure all endpoints meet security baselines and compliance requirements
Application Management and Deployment
- Inventory and rationalize SCCM-deployed applications prior to migration
- Repackage and publish applications via Intune (Win32, MSI, Store apps)
- Establish and maintain self-service app deployment through the Company Portal
- Document and optimize application deployment processes
Windows Update Management via Intune
- Transition Windows Update for Business (WUfB) policies from SCCM to Intune
- Define update rings and deadlines for quality and feature updates
- Monitor compliance, update success rates, and remediation through Intune reporting
Configuration Profiles and Security Baselines
- Replace legacy GPOs and SCCM configuration items with Intune configuration profiles
- Implement and maintain Microsoft Security Baselines for Windows, Edge, and Office
- Regularly review policy drift and ensure alignment across device groups
Monitoring, Reporting, and Endpoint Analytics
- Leverage Endpoint Analytics and Device Health reports in Intune for proactive maintenance
- Build and maintain dashboards for compliance, patching, and enrollment health
- Define and execute remediation workflows for non-compliant or unhealthy devices
SCCM Co-Management and Decommissioning
- Enable co-management for pilot devices to ensure smooth policy handover
- Gradually shift workloads (compliance, updates, apps) from SCCM to Intune
- Plan and execute SCCM infrastructure decommissioning once all endpoints are fully managed by Intune
Collaboration, Documentation, and Support
- Partner with global IT teams to standardize and optimize desktop solutions.
- Provide training and support to local IT teams and end-users.
- Create and maintain technical documentation and management reports.
PREFERRED EXPERIENCE AND QUALIFICATIONS:
- Bachelor’s degree in Computer Science, Information Technology, or related field (or equivalent experience)
- Certifications such as Microsoft Certified: Modern Desktop Administrator Associate, Azure Administrator Associate, or equivalent
- Familiarity with ITIL framework and service delivery processes
- Experience with cloud migration projects and Office 365 migrations
- Strong expertise in Windows 11 OS, Microsoft Intune, SCCM, Azure Active Directory, and Entra ID
- Troubleshooting experience on end-user devices
- Mobile application management policies
- Management of Apple devices through Intune
- Hands-on experience with device enrollment, compliance configuration, and application deployment in Intune
- Proficiency in scripting languages (PowerShell preferred) for automation
- Excellent problem-solving and troubleshooting skills
- Strong communication skills; ability to work in a global, cross-functional team
- Experience with endpoint security solutions and security best practices
- Minimum 4-6 years in desktop engineering, endpoint management, or IT support roles
Please consider your application unsuccessful should you not receive feedback within 2 weeks.
