Endpont Support Engineer(Intune & Fortinet Focus)

About the position

Technical Support & Troubleshooting (30%)

• Provide Tier 3 technical support for end-user incidents and service requests.
• Troubleshoot and resolve issues related to Windows OS, Microsoft Office suite, Active Directory, Printing infrastructure, company applications, and basic network connectivity.

Modern Endpoint Management & Engineering (50%)

• Intune Administration: Serve as the subject matter expert (SME) for Microsoft Intune, responsible for day-to-day administration, configuration, and proactive monitoring.
• Device Lifecycle: Design and manage the complete lifecycle of endpoints using Intune, including device enrollment (Autopilot), configuration profiles, compliance policies, and retirement.
• Application Deployment: Manage and deploy software applications, updates, and patches to endpoints via Intune and other deployment tools.
• Security & Compliance: Develop, test, and implement security and compliance policies (e.g., firewall, encryption, restricted apps) in Intune to align with organizational security requirements. Develop and administer patch management policies, ensuring the organization’s endpoints are secure and up-to-date.
• Policy Management: Manage and transition Group Policy Objects (GPOs) to modern policy management within Intune (Settings Catalog, Administrative Templates).
• Troubleshooting: Provide deep-dive technical analysis and resolution for complex endpoint, OS, and Intune-related issues (Tier 3).

Collaboration & Strategy (20%)

• Collaborate with IT Architects and the Cybersecurity and Compliance team to ensure endpoint configurations meet security audit requirements (e.g., integrating with Microsoft Defender for Endpoint).
• Document all configurations, standards, and engineering processes related to endpoint management.
• Evaluate and recommend new technologies and processes to enhance endpoint security, efficiency, and user productivity.

Responsibilities

• Provide Tier 3 technical support for end-user incidents and service requests.
• Troubleshoot and resolve issues related to Windows OS, Microsoft Office suite, Active Directory, Printing infrastructure, company applications, and basic network connectivity.
• Serve as the subject matter expert (SME) for Microsoft Intune, responsible for day-to-day administration, configuration, and proactive monitoring.
• Design and manage the complete lifecycle of endpoints using Intune, including device enrollment (Autopilot), configuration profiles, compliance policies, and retirement.
• Manage and deploy software applications, updates, and patches to endpoints via Intune and other deployment tools.
• Develop, test, and implement security and compliance policies (e.g., firewall, encryption, restricted apps) in Intune to align with organizational security requirements.
• Develop and administer patch management policies, ensuring the organization’s endpoints are secure and up-to-date.
• Manage and transition Group Policy Objects (GPOs) to modern policy management within Intune (Settings Catalog, Administrative Templates).
• Provide deep-dive technical analysis and resolution for complex endpoint, OS, and Intune-related issues (Tier 3).
• Collaborate with IT Architects and the Cybersecurity and Compliance team to ensure endpoint configurations meet security audit requirements (e.g., integrating with Microsoft Defender for Endpoint).
• Document all configurations, standards, and engineering processes related to endpoint management.
• Evaluate and recommend new technologies and processes to enhance endpoint security, efficiency, and user productivity.

Requirements

• Experience: 4+ years of experience in systems administration or engineering, with at least 2 years focused on modern endpoint management.
• Intune Expertise (Must-Have): Deep, demonstrable knowledge and hands-on experience with Microsoft Intune (Endpoint Manager) and Azure Active Directory/Entra ID.
• OS Knowledge: Expert-level knowledge of Windows 11 troubleshooting and configuration.
• Scripting: Proficiency with PowerShell for automation, configuration, and advanced troubleshooting on endpoints.
• Networking/Security: Strong understanding of security concepts (MFA, Conditional Access, Zero Trust) and how they apply to endpoint access.
• Technical support
• Customer service
• Windows
• Active directory
• Office 365
• Application support
• ServiceNow
• Support
• Troubleshooting
• Help desk

Nice-to-haves

• Microsoft Certified: Endpoint Administrator Associate (MD-102)
• Microsoft 365 Certified: Enterprise Administrator Expert (MS-102)
• Azure or Security-related certifications.

Benefits

• Medical, dental & vision
• Critical Illness, Accident, and Hospital
• 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available
• Life Insurance (Voluntary Life & AD&D for the employee and dependents)
• Short and long-term disability
• Health Spending Account (HSA)
• Transportation benefits
• Employee Assistance Program
• Time Off/Leave (PTO, Vacation or Sick Leave)