System Operations Engineer

Stefanini Group•Princeton, NJ

1d•Onsite

About The Position

The individual will be responsible for managing and supporting vulnerability remediation across all workstation endpoints, including desktops, laptops, virtual machines, and tablets. The role includes administration, configuration, and operational support of endpoint and workplace technologies such as Group Policy (GPO), Microsoft SCCM/MECM, Microsoft 365 (O365), and Active Directory. This position demands strong technical expertise across the technologies managed by the team, close collaboration with Desktop Engineering and Information Security teams, and ownership of services with a focus on continuous improvement, automation, and innovation.

Requirements

Bachelor's degree in Computer Science, Information Systems, or related field.
8+ years of experience in IT operations, with 2+ years in a lead role.
Strong knowledge of IT infrastructure, including servers, networks, and databases.
Experience with cloud platforms (Azure) and deployment tools (SCCM, GPO,O365,MFA).
Familiarity with vulnerability scanning tools like Nessus and frameworks like ITIL.
Excellent troubleshooting, communication, and collaboration skills.

Responsibilities

Lead the deployment of security patches and large-scale software rollouts across all endpoint devices using SCCM.
Implement and maintain Group Policies, DUO MFA administration, and Office Suite management.
Support and implement innovative solutions developed by Desktop Engineering to enhance service delivery.
Provide 3rd-level technical support and participate in on-call/on-stack rotations for endpoint issues.
Act as Subject Matter Expert (SME) for all services managed by the team.
Collaborate with Desktop Engineering to review technology roadmaps, enhancements, and upgrades.
Lead internal projects and serve as technical lead for larger initiatives managed by the PMO.
Champion services by engaging with other technology teams and end users to gather requirements and drive innovation.
Own the remediation of vulnerabilities identified in workstations, including Laptops, Desktops, VDI, ThinPC, and Moonshots.
Perform risk assessments based on CVSS scores and prioritize remediation accordingly.
Assign vulnerabilities to team members and ensure timely communication and resolution.
Use remediation methods such as: Patch Management, Application Packaging, Group Policy Management, Scripted Deployments(Powershell), DCM via SCCM, Auto-update (Cloud Managed), Manual Remediation, Encryption Protocols, Certificate Management.
Actively contributes to team objectives while fostering a culture of mutual respect and shared success.
Builds trusted relationships across teams and levels, engaging authentically to drive alignment and collective ownership.
Models accountability and professional behavior that reinforces team cohesion and upholds organizational values.
Encourages open dialogue and inclusive participation, ensuring all voices are heard and valued.
Thrives in dynamic environments, showing resilience and supporting others through change and challenge.
Monitor remediation progress through (Brinqa) dashboards and smart sheets.
Conduct re-scanning post-remediation to validate fixes (typically reflected within two weeks).
Provide regular reporting and metrics on team performance and system health.