Sr. Platform Engineer, Endpoint (Hybrid - Seattle, WA)

About The Position

Requirements

• 6+ years of experience with end-user computing technologies within a complex organization, including development, implementation, and support
• Expert hands-on experience managing Windows client and server operating systems at scale using Microsoft Endpoint Configuration Manager (MECM/SCCM)
• Experience managing macOS, including configuration profiles, compliance policies, and software distribution
• Experience deploying and managing Virtual Desktop Infrastructure (VDI) platforms, including image lifecycle management and the supporting infrastructure (e.g., Azure Virtual Desktop)
• Expert experience managing Intune-enrolled mobile devices (Android, iOS), including device enrollment, configuration, app protection policies, and conditional access
• Expert proficiency writing PowerShell scripts for endpoint automation, remediation, and reporting; proficiency in Python or Bash is a strong plus
• Deep knowledge of Microsoft Intune (device compliance, configuration profiles, app deployment) and MECM/SCCM (task sequences, collections, software update management)
• Strong experience with Microsoft identity and infrastructure technologies including Azure AD, Active Directory, GPO, and DNS
• Understanding of source version control systems (GitHub) for managing scripts and configuration-as-code
• Familiarity with industry-standard monitoring and observability tools (New Relic)
• Understanding of security protocols, standards, and endpoint security controls (e.g., BitLocker, MDM compliance policies, conditional access)
• Ability to translate complex technical endpoint challenges into clear business impact and actionable solutions
• Comfortable working in an agile environment, meeting deadlines in a fast-paced, constantly evolving technology landscape
• Demonstrated ability to guide and oversee end-to-end feature delivery and implementation
• Passion for continuous improvement, always looking to eliminate toil and improve reliability through automation
• Ability to quickly learn new technologies and adopt new tools as the endpoint ecosystem evolves

Nice To Haves

• Experience with Zebra device management tools, Android Enterprise enrollment workflows, and iOS/iPadOS device management via Intune
• Experience integrating endpoint telemetry into monitoring platforms (New Relic)
• Experience with hybrid cloud infrastructure (Azure/AWS) and endpoint management in cloud-joined or hybrid-joined scenarios
• Experience with application packaging formats (MSI, MSIX, APK) and enterprise software distribution best practices
• Experience with VDI health monitoring and operational tooling to maintain performance and availability of virtual desktop environments
• Exposure to ITSM platforms (ServiceNow, Jira) for change management and incident workflows
• Experience with web service integrations and REST APIs (e.g., Microsoft Graph API for Intune automation)

Responsibilities

• Endpoint Management & Configuration Design, build, and maintain configurations for Windows client and server operating systems, macOS, mobile, and virtual desktop endpoint platforms
• Develop and maintain device configuration profiles, compliance policies, and conditional access rules in Microsoft Intune and MECM/SCCM
• Deploy and maintain Virtual Desktop Infrastructure (VDI) environments, including management of VM images, user profile configurations, and the supporting platforms that maintain the health and operation of those environments
• Own the deployment pipeline for operating system images, application packaging, and patch management across all client endpoint platforms
• Architect and implement MDM/UEM solutions that enforce security baselines while preserving end-user productivity
• Lead endpoint hardening initiatives including CIS benchmark alignment, zero-trust policy enforcement, and certificate lifecycle management
• Partner with the Security team to triage, prioritize, and remediate endpoint vulnerabilities across the Windows, macOS, mobile, and virtual desktop fleet in accordance with SLA targets
• Develop and maintain automated remediation scripts and Intune remediation packages to detect and resolve CVEs, misconfigurations, and compliance gaps at scale without manual intervention
• Operate and tune endpoint detection tooling to maintain continuous visibility into the vulnerability posture of the fleet
• Track remediation progress, report on vulnerability metrics and trends, and drive closure of open findings through coordination with application owners
• Write robust PowerShell, Python, or Bash scripts to automate endpoint provisioning, compliance remediation, VDI image management, software deployment, and configuration drift detection
• Build and maintain automation pipelines for endpoint lifecycle events (enrollment, reconfiguration, decommission) using Intune Graph API, MECM task sequences, and CI/CD tooling
• Develop scripts and tools that surface endpoint health telemetry into monitoring platforms such as New Relic
• Maintain code in source control (GitHub), apply code review practices, and document automation libraries for team reuse
• Identify manual, repetitive operational tasks and replace them with reliable, tested automation
• Serve as the team’s subject matter expert for Windows, macOS, and mobile endpoint platforms
• Drive end-user experience goals and ongoing productivity improvement initiatives across the endpoint fleet
• Lead incident resolution, cross-functional troubleshooting, and root cause analysis for complex endpoint issues; engage vendors where appropriate
• Partner with the team’s manager and program manager to define and execute team vision and roadmaps
• Write and contribute to project plans, runbooks, and team documentation
• Collaborate with Security, Networking, and Application teams to ensure endpoints meet compliance and access control requirements
• Provide mentorship and technical coaching to team members on endpoint engineering best practices
• Participate in an on-call rotation as needed

Benefits

• Medical/Vision
• Dental
• Retirement and Paid Time Away
• Life Insurance and Disability
• Merchandise Discount and EAP Resources