SUMMARY:
-
POSITION INFO:
Global Company is looking for a Senior Workspace Engineer to join their team.
SUMMARY:
The Workspace Engineer is responsible for designing, implementing, and supporting modern endpoint management solutions across the organization, with a primary focus on Microsoft Intune, Windows Autopilot, and SCCM-to-Intune migration. This role ensures secure, compliant, and efficient device lifecycle management, application deployment, and operational excellence for Windows endpoints. The Workspace Engineer collaborates with global IT teams to drive standardization, automation, and continuous improvement in workspace technologies.
MINIMUM REQUIREMENTS:
Bachelor’s degree in Computer Science, Information Technology, or related field (or equivalent experience)
Certifications such as Microsoft Certified: Modern Desktop Administrator Associate, Azure Administrator Associate, or equivalent
Familiarity with ITIL framework and service delivery processes
Experience with cloud migration projects and Office 365 migrations
Strong expertise in Windows 11 OS, Microsoft Intune, SCCM, Azure Active Directory, and Entra ID
Troubleshooting experience on end-user devices
Mobile application management policies
Management of Apple devices through Intune
Hands-on experience with device enrollment, compliance configuration, and application deployment in Intune
Proficiency in scripting languages (PowerShell preferred) for automation
Excellent problem-solving and troubleshooting skills
Strong communication skills; ability to work in a global, cross-functional team
Experience with endpoint security solutions and security best practices
Minimum 6+ years in desktop engineering, endpoint management, or IT support roles
RESPONSIBILITES:
Device Enrollment and Compliance Configuration
Set up and test Intune enrollment methods (Windows Autopilot, BYOD, bulk enrollment)
Define, implement, and maintain compliance policies (encryption, password rules, antivirus, etc.)
Integrate conditional access with Entra ID (Azure AD) for non-compliant devices
Ensure all endpoints meet security baselines and compliance requirements
Application Management and Deployment
Inventory and rationalize SCCM-deployed applications prior to migration
Repackage and publish applications via Intune (Win32, MSI, Store apps)
Establish and maintain self-service app deployment through the Company Portal
Document and optimize application deployment processes
Windows Update Management via Intune
Transition Windows Update for Business (WUfB) policies from SCCM to Intune
Define update rings and deadlines for quality and feature updates
Monitor compliance, update success rates, and remediation through Intune reporting
Configuration Profiles and Security Baselines
Replace legacy GPOs and SCCM configuration items with Intune configuration profiles
Implement and maintain Microsoft Security Baselines for Windows, Edge, and Office
Regularly review policy drift and ensure alignment across device groups
Monitoring, Reporting, and Endpoint Analytics
Leverage Endpoint Analytics and Device Health reports in Intune for proactive maintenance
Build and maintain dashboards for compliance, patching, and enrollment health
Define and execute remediation workflows for non-compliant or unhealthy devices
SCCM Co-Management and Decommissioning
Enable co-management for pilot devices to ensure smooth policy handover
Gradually shift workloads (compliance, updates, apps) from SCCM to Intune
Plan and execute SCCM infrastructure decommissioning once all endpoints are fully managed by Intune
Collaboration, Documentation, and Support
Partner with global IT teams to standardize and optimize desktop solutions.
Provide training and support to local IT teams and end-users.
Create and maintain technical documentation and management reports.
