Job description
The Endpoint Engineer/Administrator will oversee next-generation endpoint management and protection platforms, including Microsoft Intune, Tanium, Jamf, and CrowdStrike. This role focuses on ensuring the security, functionality, and performance of endpoint devices while maintaining an up-to-date and secure infrastructure.
The successful candidate will identify opportunities for improvement in processes and systems, provide advanced support to end-users, and implement best practices in endpoint device management. Strong teamwork, adaptability, and communication skills are essential for success in this dynamic environment.
This position demands expertise in endpoint management platforms and technologies, with a proven ability to develop and manage security policies and configurations effectively.
Key Responsibilities:
- Manage device provisioning, software, and policy installation/configuration, ensuring efficient operations and maintenance of the device management infrastructure.
- Conduct technical research and development to drive innovation within the infrastructure.
- Ensure that system hardware, operating systems, software systems, and related procedures adhere to District policies, standards, and guidelines.
- Configure and maintain device-based policies, applications, services, and settings using Windows Autopilot in accordance with standards and operational requirements.
- Perform system and security monitoring, including verifying key processes, reviewing logs, and identifying potential intrusions.
- Deploy operating system images, software packages, patches, and updates to endpoints using tools like Intune, Tanium, and JamF.
- Provide Tier III support, troubleshooting and resolving issues, and recovering from software failures.
- Coordinate and communicate with impacted agencies regarding system updates and troubleshooting activities.
- Regularly apply operating system patches, upgrade administrative tools/utilities, and configure system software to meet operational needs.
- Implement and manage information security technologies such as firewalls, IDS/IPS, SIEM, antivirus, network analyzers, and malware analysis tools.
- Develop and execute information security incident response plans.
- Utilize scripting and tool automation expertise (e.g., PowerShell, Regex, Perl) to enhance system efficiency.
- Lead the development of IT solutions and services based on business requirements and industry standards.
- Employ dynamic and static code assessment tools to identify and mitigate application vulnerabilities throughout the SDLC.
Skills & Qualifications:
Required Technical Skills
- 7+ years of experience administering Windows Server environments (2016/2019/2022).
- 3+ years Performing successful Windows OS updates
- 6+ years total progressive IT experience
- 5+ years of Endpoint Management and Security
- 3+ years Trouble shooting complex experience in endpoint engineering with PowerShell, VBScript and batch scripting. Strong focus on Windows and macOS devices.
- 5+ Experience with device management platformssuch as Microsoft Intune, Tanium and/or Jamf.
- 2+ years Strong understanding of network technologies, such as DNS, DHCP, TCP/IP, VPN, and other related technologies.
- 2+ years cloud-based platforms such as Azure ADand Intune, integration with endpoint management solutions.
- Analytical and problem-solving skills.
- Excellent communication and interpersonal skills.
- Abilityto work independently and as part of a team in a fast-paced environment.
Minimum Qualifications
- Endpoint Engineer subject-matter expert (SME).
- Experience in managing Azure AD, Intune, Tanium(Jamf would be a plus)
- BS computer science/IT/SW or related field.
- Datasecurity and networking experience required.
Background check and credit check will be required.
Education
- BSDegree in IT, Cybersecurity, or Engineering, or equivalent experience.
If you have a strong technical background and are ready to bring your expertise to a dynamic environment, apply today to join the Avid Systems team!
