Enduser IT Support Engineer

The Senior Endpoint Engineer is responsible for engineering, enhancing, and supporting the organization’s Azure Virtual Desktop (AVD) and Microsoft Intune environments for both physical devices and virtual workspaces. The role requires strong technical expertise, disciplined operational processes, and deep knowledge of endpoint technologies to ensure stable, secure, and efficient end‑user computing services across the enterprise. This position directly impacts nearly all users and plays a critical role in maintaining a reliable and secure endpoint ecosystem.

Responsibilities

• Deliver technology and products in the roadmap on schedule and with the highest quality.
• Provide advice, guidance, and direction to carry out plans and procedures, ensuring schedule attainment, product development process adherence and performance.
• Provide last tier support for operations and support teams, including root cause analysis and preventative analysis.
• Act as an escalation point for the Desktop Operations team and any issues related to the End User Computing environment, focusing on Endpoint Security Protection and application management.
• Partner with other Engineering teams to develop solutions.
• Manage the Azure Virtual Desktop (AVD) environment, including creating images, deploying VMs, and monitoring VM performance.
• Develop automated solutions for deploying software packages, application patches/updates, and workstation images.
• Engineer and support multiple Windows desktop images.
• Manage the entire lifecycle of global standard desktop and laptop models.
• Design and implement Microsoft Intune solutions that meet end‑user requirements.
• Create and manage Intune policies for application deployment, device compliance, and security configurations.
• Ensure seamless integration with other Microsoft 365 services.
• Windows 11 provisioning: design and deploy Windows 11 provisioning processes using Intune Autopilot, configure and manage Windows Update for Business policies, and develop and maintain standardized deployment images.
• Active Directory Group Policy Management: design and manage Group Policy Objects (GPOs) in Active Directory to enforce security and configuration policies, and collaborate with the AD team to ensure alignment with broader infrastructure goals.
• Implement security best practices and compliance policies within Intune, monitor and respond to security incidents related to mobile devices and endpoints.
• Create detailed documentation of Intune configurations, Windows provisioning processes, and Group Policy settings.
• Maintain desktop images and modify SCCM task sequences as needed.
• Package, test, and deploy new applications as needed.
• Maintain and expand the existing Knowledge Base.
• Create and maintain support documents to uphold high standards of quality in the delivery of End User Computing services.

Requirements

Technical Qualifications

• 8+ years total work experience, 5+ of those years with proven experience in designing and implementing Microsoft Intune solutions.
• 5 years’ experience as a system engineer.
• Desktop engineering and support experience in an enterprise environment.
• Proven experience with Windows 11, Active Directory Structure, and managing Group Policies.
• Experience developing and testing software packages using InstallShield or equivalent.
• Skills managing a VDI environment (Azure Virtual Desktop preferred).
• Expert level experience within End Point Protection Engineering.
• Expertise in MECM and Intune.

#J-18808-Ljbffr…