Systems Administrator - Endpoint Management

About The Position

Requirements

• Bachelor’s degree in Information Technology, Computer Science, or related field, or equivalent work experience.
• 3+ years of experience administering Windows Server and enterprise endpoint environments.
• Strong working knowledge of Microsoft Intune, SCCM/MECM, and Windows Autopilot.
• Experience managing Apple devices through Apple Business Manager and MDM solutions.
• Proficiency in PowerShell scripting and automation frameworks.
• Familiarity with Microsoft Entra ID, Group Policy, and hybrid identity models.
• Excellent troubleshooting, documentation, and communication skills.

Nice To Haves

• Experience in high‑performance or engineering‑focused environments is an advantage.

Responsibilities

• Deploy, configure, and maintain Windows Server 2022 and 2025 systems in production.
• Support virtual infrastructure using Hyper‑V and VMware platforms.
• Monitor and troubleshoot server operating systems, services, and performance.
• Assist with server provisioning, configuration changes, and infrastructure upgrades.
• Develop and maintain PowerShell scripts for task automation, monitoring, and reporting.
• Administer Microsoft Active Directory and Microsoft Entra ID.
• Manage user, service, and computer accounts in accordance with security best practices.
• Implement and maintain Group Policy configurations to support organizational standards.
• Manage Windows and iOS endpoints via Microsoft Intune, ensuring secure configuration and compliance.
• Configure Intune profiles, compliance policies, app deployments, and update rings.
• Maintain SCCM/MECM for on‑premises device management, including application packaging, OS deployment, task sequencing, and patch management.
• Oversee co‑management between Intune and SCCM, supporting workload transitions and troubleshooting.
• Manage Windows Autopilot provisioning, hardware registration, and automated device setup workflows.
• Administer Apple Business Manager (ABM) for iOS devices, including Automated Device Enrollment (ADE), VPP app licensing, and MDM integration.
• Maintain and version Windows images, task sequences, and provisioning packages for standardized deployments.
• Coordinate update deployment using Intune, SCCM, and Windows Update for Business.
• Monitor endpoint compliance, enforce security baselines, and support Defender for Endpoint integration.
• Troubleshoot device enrollment, configuration, and application delivery issues across MDM environments.
• Support the implementation and maintenance of enterprise backup and recovery systems.
• Monitor backup operations and validate successful job completion.
• Participate in disaster recovery planning and test activities.
• Maintain thorough documentation for endpoint management processes, standards, and configurations.
• Record system events and operational findings to support investigation and continuity.
• Ensure endpoint and server operations align with GMPPU security and change‑control procedures.
• Partner with engineering and security teams during upgrades, provisioning changes, and infrastructure projects.
• Coordinate with hardware and software vendors during troubleshooting and implementation efforts.
• Provide knowledge transfer and operational training to IT peers on Intune, SCCM, and related systems.
• Develop scripts and tools to enhance provisioning, compliance management, and reporting.