IT Endpoint Engineer

About The Position

Requirements

• Bachelor’s degree in Information Technology, Computer Science, or equivalent practical experience
• 3+ years of experience engineering and supporting Windows endpoint environments
• Strong expertise with Windows
• Hands-on experience administering Microsoft Intune in a production environment
• Strong knowledge of Active Directory, Azure AD, Group Policy, and identity integration
• Experience implementing and supporting Security MFA
• Proficiency in PowerShell scripting for automation and configuration management
• Solid understanding of Microsoft server environments and endpoint dependencies
• Excellent troubleshooting, documentation, and communication skills

Nice To Haves

• Experience with ERD platforms and Intune security baselines
• Knowledge of Conditional Access, Zero Trust principles, and device compliance strategies
• Experience supporting hybrid and remote workforces
• Microsoft or security-focused certifications

Responsibilities

• Engineer, deploy, and support Windows desktop and laptop environments at enterprise scale
• Design, administer, and optimize Microsoft Intune for endpoint management, security, and compliance
• Configure and maintain Intune capabilities, including: Device enrollment and provisioning (Azure AD join / hybrid join), Configuration profiles and security baselines, Compliance policies and conditional access integrations, Application packaging, deployment, and updates, Windows Update for Business and patch management, Endpoint security policies (Defender, encryption, firewall)
• Develop and maintain standardized endpoint builds and deployment workflows
• Administer and support Active Directory, Azure AD, and Group Policy, ensuring alignment with Intune policies
• Implement and maintain MFA for Windows logon, VPN, RDP, and application access
• Collaborate with Microsoft server and infrastructure teams to support authentication, file services, and endpoint integrations
• Automate endpoint deployments, configurations, and reporting using PowerShell
• Troubleshoot complex endpoint, Intune, identity, and access-related issues beyond Tier 2 support
• Monitor endpoint health, security posture, and compliance, and remediate gaps proactively
• Create and maintain technical documentation, standards, and operational procedures
• Participate in OS upgrades, hardware refreshes, and security-driven initiatives
• Additional duties as assigned

Benefits

• Competitive compensation package, including pay advancement opportunities for industry certifications and continuing education
• Comprehensive benefits package, including health, dental & vision insurance, retirement plans, company paid & voluntary life insurance, company paid short-term disability, voluntary long-term disability, critical illness & accident insurance and paid time off
• Company-provided training, tools and equipment, including $150 annual boot allowance for employees required to wear safety boots in their jobs
• Career advancement potential within a growing company.