Sr. IT Technical Lead

Inspira Financial•Oak Brook, IL

About The Position

Sr. IT Technical Lead will manage and optimize device ecosystem across Windows, macOS, iOS, and AndITroid. This role will lead endpoint reliability and user experience across our Windows 11 and macOS fleets. This role owns the MDM lifecycle (provisioning, policy, compliance, and deprovisioning) using Microsoft Intune and Jamf, delivers executive/white‑glove support, and drives automation through scripting and API integrations. Sr. IT Technical Lead will work closely with cross-functional teams to streamline IT processes, enhance operational efficiency, and improve the overall user experience through automation. The ideal candidate will have a deep understanding of ITSM and ITIL principles, FreshService or similar platforms, and automation best practices. This role will provide technical mentorship for the team and other IT support teams. Mentoring will include training of your team members and automation workflow creations and team member assignment.

Requirements

5–7+ years in desktop/end‑user computing with Windows 11 and MacOS administration
Bachelor’s degree in computer science or related degree or related experience
CompTIA A+, Network+, and Security+ as well as Microsoft 365 Certified: Endpoint Administrator Associate
Experienced in Active Directory user administration, OS imaging processes, ticketing, SW installation, VM/VDI/Citrix, automated ticketing systems (FreshService, ServiceNow), troubleshooting in the Windows desktop environment (networking, OS, Microsoft Office suite.
Hands‑on expertise with Microsoft Intune (Windows) and Jamf Pro (macOS) for MDM lifecycle, compliance, app deployment, and scripting.
Proven executive/white‑glove support experience with excellent professionalism and discretion.
Strong scripting ability in PowerShell (advanced), Python, or JavaScript, including REST API usage (Microsoft Graph, Jamf API, ITSM APIs).
Experience with packaging/automation tools such as Robopack or equivalents (e.g., PDQ Deploy, Chocolatey, Winget, Jamf packages, Munki, RayPack, Ivanti).
Deep knowledge of ITSM/ITIL processes; experience using platforms like ServiceNow, Jira Service Management, or Freshservice.
Endpoint security skills: BitLocker/FileVault, EDR/XDR (e.g., Defender for Endpoint), vulnerability remediation, and compliance baselines.
Knowledge of TCP/IP, Windows Security (Share and NTFS permissions).
Extensive knowledge of Windows OS and related configuration.
Knowledge of Servers, Switches, Routers, and Data Center related hardware.
Experience in handling escalated issues, resolving more complex technical issues.
Experience with VOIP/Telephony systems
Strong troubleshooting across hardware, drivers, OS, networks (VPN/Wi‑Fi), certificates, identity, and collaboration tools (O365, Teams/Zoom).
Excellent communication, documentation, and stakeholder management skills.
Ability to provide personal transportation from time to time.
Ability to work overtime.
Prolonged periods of sitting at a desk and working on a computer.

Responsibilities

Serve as an escalation point for endpoint issues (Windows/macOS/iOS/Android), collaborating with Service Desk for resolution.
Participate and support the design, implementation, and maintenance of the MDM policies, profiles, and baselines for Windows 11 (Intune) and macOS (Jamf or similar tool), covering security, compliance, encryption, patching, app deployment, and configurations.
Own the device lifecycle: procurement intake, enrollment, configuration, periodic health checks, OS/app updates, offboarding/retirement (wipe, reassignment, data retention), and auditing.
Develop and maintain Zero‑Touch/AutoPilot/ABM provisioning workflows.
Monitor and remediate endpoint vulnerabilities (OS/app patching, misconfigurations, EDR alerts, device posture).
Improve device performance, stability, and user experience through telemetry, analytics, and feedback.
Mentor and support the Deskside and Helpdesk teams, acting as an additional technical tier providing knowledge and troubleshooting assistance.
Provide high‑touch, discreet, and initiative-taking support for C‑suite and senior leaders, including conference room/AV readiness, and rapid incident resolution.
Create personalized runbooks and VIP device standards to minimize downtime and ensure exceptional experience.
Drive implementation of automation program and required toolsets to reduce impact on the end user community.
Build and maintain automation for deployment, configuration drift correction, compliance remediation, and self‑service tasks using Microsoft Power Automate and coordinate across Azure AD/M365/Freshservice/Intune/Jamf.
Build and maintain automation for deployment, configuration drift correction, compliance remediation, and self‑service tasks using PowerShell, Power Automate, or similar tools (including REST/SOAP API integrations with Intune, Microsoft Graph, Jamf, and ITSM platforms).
Package and deploy applications/updates using Robopack (or similar packaging/automation tool); improve silent installs, versioning, rollback, and dependency management.
Maintain and optimize ITSM processes aligned to ITIL (Incident, Service Request, CMDB, Knowledge).
Integrate HRIS triggers (e.g., new hire/term updates) with ADP/Freshservice/Intune/Jamf and M365.