Platform Engineering Team Lead

About The Position

Requirements

• 5+ years of diverse IT experience, specifically in:• Microsoft Intune • Windows 11 and Modern Policies • Virtual Desktop environments • MS Defender for Endpoint • Microsoft 365 applications • CrowdStrike EDR Platform • End‑user device engineering and support
• Extensive knowledge of Microsoft Windows Server, desktop applications, and Wintel hardware systems.
• Experience working with Cloud technologies and SaaS solutions.
• Strong understanding of tools and processes used in managing end‑user platforms.
• Work experience in a managed services IT environment is preferred.
• Expertise in OS engineering, image engineering, Group Policies/Modern Policies, secure baseline development (including DISA STIGs), and endpoint protection engineering.
• Proficiency with the following tools (leadership-level oversight required):• Intune, CrowdStrike, Defender, Endpoint Privilege Management, Fleet RMM, Netaphor SiteAudit, HP Web Jet Admin, Kofax Autostore, Token Vault, Wise Admin Studio, PSTools, Graph, YubiKey Manager, vSec:CMS Admin
• Strong scripting and automation skills (PowerShell preferred).
• Experience with ServiceNow for ticketing, change control, and service delivery.
• Strong technical problem‑solving skills, analytical ability, decisiveness, and sound judgment.
• Ability to work effectively with clients, IT management, staff, and vendors.
• Excellent verbal and written communication skills, with the ability to clearly and concisely present complex technical concepts to end‑users with varying skill levels.
• Strong ability to balance multiple priorities in a high‑demand environment.

Nice To Haves

• Experience with Virtual Desktop Infrastructure (VDI).
• Experience with secure configuration frameworks (e.g., DISA STIGs).
• Experience with automation/orchestration for software distribution and remediation.

Responsibilities

• Lead the Platform Engineering team responsible for desktop/mobile OS engineering, image management, endpoint protection engineering, software distribution, and unified endpoint management—ensuring reliable and secure end‑user platforms that directly support FDIC’s mission.
• Collaborate with engineering teams, security teams, application owners, OEM vendors, and FDIC stakeholders to resolve complex issues, plan upgrades, and maintain compliance with FDIC policies and standards.
• Drive platform modernization, automation, secure baseline development, image lifecycle management, and endpoint protection improvements—enhancing performance, reducing incidents, and improving user experience.
• Utilize advanced engineering tools and technologies including Microsoft Intune, Windows 11, Modern Policies, Virtual Desktop environments, MS Defender for Endpoint, CrowdStrike EDR, Microsoft 365 applications, Fleet RMM, Netaphor SiteAudit, HP Web Jet Admin, Kofax Autostore, Token Vault, Wise Admin Studio, PSTools, Graph API, YubiKey Manager, and vSec:CMS Admin.
• Develop and maintain desktop and mobile OS baseline configurations.
• Create and maintain Group Policies, Modern Policies, scripts, and documentation.
• Define OS, applications, encryption/security functionality, and image requirements.
• Build and maintain Core Images and Core Image profiles across multiple device models and OS versions.
• Support OS lifecycle management, including testing, validation, and quarterly updates.
• Script, package, and test software applications for Windows and macOS.
• Manage software deployment tools and self‑service portals.
• Support offline deployment methods (USB, CDs) when required.
• Oversee engineering, deployment, and troubleshooting of EPP agents (e.g., McAfee, Carbon Black).
• Ensure EPP central management consoles and modules are functioning.
• Support SOC workflows, log collection, and malware containment actions.
• Develop test and release plans for image validation.
• Coordinate with FDIC teams for application testing and image approval.
• Maintain offline OS installation media and support remote build processes.
• Provide Tier 3 engineering support for escalated desktop/mobile issues.
• Troubleshoot OS, application, and patching issues in collaboration with FDIC teams.
• Research and evaluate new end‑user technologies.
• Develop platform roadmaps and demographic user profiles.
• Participate in quarterly architecture/engineering planning meetings.

Benefits

• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career
• Professional growth opportunities including paid education and certifications
• Cutting-edge technology you can learn from
• Rest and recharge with paid vacation and holidays