SCCM / Intune Engineer

Position Summary:

We are seeking an experienced SCCM / Intune Engineer responsible for the design, deployment, administration, and support of Microsoft Endpoint Configuration Manager (SCCM) and Microsoft Intune. This role will focus on modern endpoint management, OS deployment, patch management, application packaging, and security policies across hybrid environments.

The ideal candidate should have deep expertise in Microsoft Intune (Endpoint Manager), SCCM, Windows Autopilot, and Group Policy, with experience supporting enterprise-wide device management and security strategies.

Key Responsibilities:

Endpoint Management & Device Deployment:

• Design, implement, and manage SCCM and Intune solutions for modern endpoint management.
• Configure Windows Autopilot for device provisioning and zero-touch deployment.
• Oversee OS deployment, imaging, and device enrollment for Windows, macOS, iOS, and Android.
• Maintain group policies, compliance policies, and conditional access for secure device management.

Patch Management & Software Deployment:

• Manage Windows Update for Business (WUfB) and SCCM-based patch deployment.
• Package and deploy software applications, updates, and drivers via SCCM and Intune.
• Automate deployment tasks using PowerShell scripting and Intune configuration profiles.
• Ensure timely security patches, vulnerability remediation, and compliance enforcement.

Security & Compliance:

• Implement BitLocker encryption, Defender for Endpoint policies, and security baselines.
• Enforce zero-trust security models, conditional access, and compliance policies.
• Monitor, analyze, and resolve endpoint security threats using Microsoft Defender ATP.
• Work with security teams to align device management with cybersecurity standards (NIST, CIS, ISO 27001, etc.).

Monitoring & Troubleshooting:

• Use SCCM, Intune, and Log Analytics to monitor device health and troubleshoot issues.
• Develop custom reports and dashboards for system performance and compliance tracking.
• Optimize SCCM and Intune environments for performance, reliability, and scalability.
• Troubleshoot software distribution, device enrollment, and policy enforcement issues.

Automation & Process Improvement:

• Automate tasks using PowerShell, Azure Automation, and Graph API.
• Develop self-service options for users, improving efficiency and reducing manual workload.
• Optimize and document SCCM/Intune processes, configurations, and best practices.

Required Qualifications & Experience:

• 5+ years of experience in SCCM / MECM (Microsoft Endpoint Configuration Manager) and Intune.
• Strong experience with Windows Autopilot, Group Policy, and Active Directory.
• Expertise in application packaging, deployment, and patch management.
• Proficiency in PowerShell scripting for automation and configuration management.
• Experience with BitLocker, Defender ATP, Conditional Access, and security baselines.
• Knowledge of Azure AD, Intune device compliance, and hybrid join scenarios.
• Hands-on experience with mobile device management (MDM) and mobile application management (MAM).
• Strong troubleshooting skills for device enrollment, policy conflicts, and patch failures.