UEM Engineer

About The Position

Requirements

• Bachelor’s degree with 4–8 years of relevant experience, or Master’s degree with 2–6 years of experience (additional experience may be considered in lieu of degree)
• Active DoD Secret clearance
• Demonstrated experience with Microsoft Intune implementation and endpoint migration
• Hands-on experience packaging and deploying applications in Intune
• Proficiency in PowerShell scripting for automation and troubleshooting
• Experience working directly with customers and stakeholders to gather requirements, provide updates, and deliver solutions
• Strong communication, organizational, and problem-solving skills with the ability to meet deadlines in a dynamic environment
• Familiarity with Atlassian tools (Jira, Confluence)
• Current DoD 8570 IAT Level II certification (e.g., Security+ CE, CISSP)

Nice To Haves

• Microsoft certifications such as Microsoft Endpoint Administrator Associate or Microsoft 365 Certified: Endpoint Administrator Expert
• Experience with large-scale enterprise migrations to cloud-native endpoint management
• Familiarity with Zero Trust architecture and modern identity/security frameworks
• Experience integrating endpoint management with SIEM/SOC platforms

Responsibilities

• Lead the design, architecture, and deployment of Microsoft Intune solutions aligned with enterprise security, compliance, and user experience requirements
• Drive endpoint modernization efforts, including migration from MECM and traditional AD-joined devices to Azure AD–joined and Intune-managed environments
• Develop and manage Intune policies and configurations, including compliance policies, configuration profiles, and application deployment strategies
• Package, deploy, and lifecycle-manage applications in Intune, emphasizing automation, version control, and end-user experience
• Architect and implement Windows 10/11 provisioning and deployment solutions using Intune, Autopilot, Enrollment Status Page (ESP), and modern provisioning techniques
• Configure and optimize Windows Update for Business (WUfB) to ensure secure, reliable, and timely OS patching
• Collaborate with infrastructure and identity teams to translate and modernize Group Policy Objects (GPOs) into Intune-based controls (Settings Catalog, ADMX-backed policies)
• Partner with Active Directory and MECM/SCCM teams to ensure coexistence strategies and migration readiness
• Integrate Intune with the broader Microsoft 365 ecosystem, including Defender for Endpoint, Conditional Access, and Zero Trust security models
• Implement and enforce endpoint security best practices, including encryption, endpoint protection, compliance baselines, and data loss prevention
• Support security operations by monitoring endpoint-related incidents and integrating telemetry with SIEM/SOC workflows
• Identify opportunities to optimize endpoint management processes, recommending improvements and driving adoption of modern management capabilities
• Develop and maintain comprehensive technical documentation, including architecture diagrams, configuration standards, and migration strategies

Benefits

• competitive compensation
• Health and Wellness programs
• Income Protection
• Paid Leave
• Retirement