Location: 100% Remote
Position Type: 6M C2H
Hourly / Salary: BOE
JOB SUMMARY
Vaco Technology is currently seeking a Senior Endpoint Engineer for a 6M C2H opportunity that is 100% remote-based. The Senior Endpoint Engineer will be joining a team that has already developed the infrastructure but they need this person to come in and work with a variety of different levels, from lower-level helpdesk, field techs, acquisition teams, laptop installs, etc. up through the Engineering and Architecture level. Essentially, this company is streamlining their entire organization. This Senior Endpoint Engineer will be working within an Azure Cloud with CloudFlare backbone environment, ensuring laptops are updated, imaged, and configured properly as well as ensuring stock is always available. A key function of the Senior Endpoint Engineer will be creating and maintaining detailed documentation, including how things are unboxed, how they are configured, detailed inventory, and ensuring system updates are properly updating. The Senior Endpoint Engineer will be supporting 3500 users with a 30% year-over-year growth rate. Additionally, the long-term goal for the Senior Endpoint Engineer role will eventually be to move into leadership once everything has been streamlined and documented. The ultimate goal of this project is to create a seamless onboarding process for any new users and to retire and replace equipment that will no longer be utilized. The Senior Endpoint Engineer will work within an established and mature user environment where there is currently no-one owning this project, where this role provides the opportunity to shape the direction in a greenfield space.
KEY RESPONSIBILITIES
- Landscape Assessment: Conduct a comprehensive assessment of the current IT environment to identify gaps and opportunities for improvement in endpoint management.
- Design / Architecture: Develop and implement robust endpoint security architectures and strategies using Microsoft InTune, Autopilot, and Azure.
- Security Management: Manage security settings, including antivirus, encryption, firewalls, and threat protection on all endpoint devices.
- Policy Development: Create and enforce security policies and procedures for endpoint devices, ensuring compliance with organizational and regulatory standards.
- Azure Integration: Architect and integrate endpoint security solutions with Azure Active Directory and other Azure services to enhance security and streamline management processes.
- Tool Identification: Identify and document the necessary tools and technologies required for the successful deployment and management of endpoint devices.
- Automation / Optimization: Develop automation solutions using scripting languages like PowerShell to optimize endpoint management tasks and improve security posture.
- Incident Management: Lead the response to security incidents involving endpoint devices, conducting in-depth investigations and applying corrective actions to mitigate risks.
- Performance Monitoring: Continuously monitor endpoint security metrics and performance, using data to identify vulnerabilities and implement improvements.
- Collaboration / Support: Work closely with IT teams and end users to provide expert guidance on endpoint security issues and ensure optimal device performance.
- Documentation / Training: Maintain detailed documentation of endpoint security configurations, processes, and incident responses. Develop and deliver training sessions to improve user awareness and security practices.
- Project Leadership: Lead the endpoint update project, collaborating with Vaco Managed Services for the Field Services component, and ensuring that all objectives are met on time and within budget.
JOB REQUIREMENTS
- Senior Endpoint Engineer (5 years) – Assess IT Landscape / Design Endpoint Solutions / Implementation / Detailed Documentation
- Endpoint Management Solutions – Azure (Cloud Infrastructure / AAD / Security Features) / InTune (MDM / App Management / Conditional Access) / AutoPilot (Deployment / Integration) / Combined Workflow (Provisioning / Deployment / Management / Ongoing Management)
- Endpoint Management / Optimization Tools – InTune / AutoPilot / MS Endpoint Manager for Device Management / Deployment
- Azure Cloud Platform / Services – AAD / Azure Security Center (Defender / Sentinel) / Security Devices, etc.
- PowerShell Scripting (hands-on) – Automation / Configuration Management
- Security Concepts (understanding) – Zero Trust / EDR (Endpoint Detection / Response)
- Create / Maintain Detailed Documentation – System / Design Documentation | Detailed Unboxing Instructions / Configurations / Inventory, etc.
PREFERRED (not required)
- Certifications – AZ-500 MS Certified: Azure Security Engineer Associate, MD-102 MS Certified: Endpoint Administrator Associate, and/or Relevant Security Certifications