Endpoint Engineer I, Technology

About The Position

Requirements

• Extensive experience in endpoint administration or desktop engineering
• Expert knowledge of Windows and MacOS operating platforms including Microsoft Windows 11 and Office 365, MacOS, and Mobile technologies
• Adept at problem-solving, troubleshooting desktop, cloud PC, and mobile device issues, effectively assisting onsite and remote users to resolve issues, involving other members of technical staff as necessary
• Excellent and adaptable communication and documentation skills for technical and non-technical audiences
• Expert knowledge of MDM/MAM tools, i.e., Intune, SCCM, Ninja One, Apple Business Manager
• Experience sizing, deploying, managing, monitoring Azure Virtual Desktop (AVD) and Microsoft 365
• Solid understanding and experience with endpoint security principles and best practices
• Experienced writing, debugging, and deploying scripts and automation tools, e.g., PowerShell, Python, Power Automate, and using code management tools, e.g., GitHub
• Strong knowledge of and experience with Azure AD, Entra ID, identity and access management (IAM) leveraging least privilege principles
• Demonstrated ability to work independently and as part of a team
• Must have strong, reliable home internet service when working remotely
• Must be able to transport moderately heavy objects, e.g., computers and peripherals
• Have attained or currently enrolled in training towards obtaining professional industry certifications within six (6) months of employment: Microsoft Endpoint Administrator Associate, JAMF Certified Admin, CompTIA A+, Network+, Security+

Nice To Haves

• Experience with Zero Trust and modern device management strategies
• Knowledge of and experience with networking fundamentals (DNS, DHCP, VPN)
• Experience supporting remote and hybrid workforces

Responsibilities

• Proactively manage, maintain, and provide exceptional and timely technical support for ACLU-issued and Bring-Your-Own-Device (BYOD) endpoint devices across the organization. These include but are not limited to Microsoft Windows, Apple MacOS/iOS/iPadOS, and Android
• Deploy and manage endpoint management solutions, e.g., Microsoft Intune for Mobile Device Management (MDM) and Mobile Application Management (MAM), Ninja One, JAMF
• Working with the Infrastructure team, appropriately size, deploy, proactively manage and monitor virtual desktop (VDs), cloud PCs, i.e., Microsoft Azure VD and Microsoft 365
• Manage endpoint security tools (MAM, EDR, antivirus, disk encryption, DLP)
• Configure device policies, profiles, compliance rules, and application deployments
• Monitor endpoint health, performance, and security posture
• Implement OS imaging, provisioning, patching, and update strategies
• Troubleshoot endpoint-related issues escalated from the Service Desk
• Maintain inventory of devices, software, and licenses Support endpoint lifecycle management (onboarding / enrollment, offboarding, refresh, and secure disposal)
• Collaborate with Information Security, Infrastructure, Network Operations, and Service Desk teams to ensure operational best practices, coordinated technical service delivery, issue resolutions, and remediation strategies deployment
• Develop and maintain documentation, standards, and procedures
• Assist with audits and ensure compliance with company and regulatory requirements

Benefits

• Time away to focus on the things that matter with a generous paid time-off policy
• Focus on your well-being with comprehensive healthcare benefits (including medical, dental and vision coverage, parental leave, gender affirming care & fertility treatment)
• Plan for your retirement with 401k plan and employer match
• We support employee growth and development through annual professional development funds, internal professional development programs and workshops