Job Description
*** This is a one-year contract with optional years (Onsite) TriTech Enterprise Systems, Inc. (TriTech) is seeking a 'Endpoint Engineer/Administrator' to support a project in Washington DC. This candidate will be intimately familiar with next generation Endpoint management/protection platforms including but not limited to Microsoft Intune, Tanium provisioning and patching management, Jamf macOS device management and CrowdStrike security.
- The engineer must have mastery level skill with Endpoint Device and patch Management
- Hands on experience with implementing and managing the following technologies like Device Provisioning, Windows Autopilot, Creation and Configuration of device policies, Software Packaging & distribution, Windows OS and software patching, reporting in Intune using Graph explorer and API.
To be successful in this position, the candidate will be responsible for managing the endpoint devices within our organization, ensuring that they are secure, up-to-date, and functioning at peak performance. As an Endpoint Engineer, the candidate also be responsible for providing support to end-users, troubleshooting issues, and identifying areas for improvement. Must display excellent teamwork skills, technical, written, and oral communication skills, and ability to learn and adapt in a fast-paced environment. The candidate must have in depth knowledge of the afore-mentioned point products and can formulate Security policy and manage Security configuration.
Specific Tasks - Day-to-day administration of our MDM environment, including Configuration of Intune and Autopilot.
- Maintain the development, test and production environments
- Manage various device policies and desktop applications in Microsoft Intune and JamF within the organization.
- Deploy software updates, Windows OS patches, and updates to endpoints using automated tools.
- Develop and maintain endpoint operating system infrastructure and perform day to day tune up and maintenance as required policies and procedures.
- Manage various components of Azure AD, Intune, Tanium and Jamf
- Troubleshoot endpoint issues and provide support to end-users.
- Create and update endpoint agent polices as per requirements.
- Provide assistance and validation of implementation timelines and delivery management.
- Communicate clearly to executive management/end users and manage the reporting process.
- Coordinate and drive Endpoint solutions and direction to achieve measurable increases in OS deployment, end-user knowledge, and operations.
- Application Packaging / scripting for deployment of apps on Windows and macOS.
- Provide up to date information on SW updates and alerts.
- Support team in the design and implementation of highly available, scalable, and secure modern mobility solution using industry best practices on Microsoft Intune and AzureAD + other 3rdparty technologies.
- Create and maintain technical documentation as well as assist with training and related materials as needed
Responsibilities: - The Endpoint Engineer is responsible for effective Device provisioning, Software and policy installation/configuration, operations, and maintenance of device management infrastructure.
- Participates in technical research and development to enable continuing innovation within the infrastructure.
- Ensures that system hardware, operating systems, software systems, and related procedures adhere to District policies, standards, and guidelines.
- Endpoint engineering and provisioning, operations and support, maintenance and research and development to ensure continual innovation.
- Device provisioning for new and existing devices using Windows Autopilot, configuration of device-based policies, applications, services, settings in accordance with standards and project/operational requirements.
- Performs daily system monitoring, verifying the systems and key processes, reviewing system and application logs, and verifying completion of scheduled jobs such as backups.
- Performs regular security monitoring to identify any possible intrusions.
- Deploy Operating system images, software packages, device configuration policies, patches, and updates to endpoints using automated tools like Intune,Tanium and JamF.
- Provides Tier III support per request from various agencies.
- Investigates and troubleshoots issues.
- Diagnoses and recovers from software failures.
- Coordinates and communicates with impacted agencies.
- Applies operating system (OS) patches and upgrades on a regular basis and upgrades administrative tools and utilities.
- Upgrades and configures system software that supports infrastructure applications or Asset Management applications per project or operational needs.
- Expertise in implementing, administrating and operating information security technologies such as firewalls, IDS/IPS, SIEM, Antivirus, network traffic analyzers and malware analysis tools.
- Utilizes advanced experience with scripting and tool automation such as Perl, PowerShell, Regex.
- Develops, leads, and executes information security incident response plans.
- Develops standard and complex IT solutions & services, driven by business requirements and industry standards.
- May also leverage dynamic and static code assessment tools to measure vulnerability of applications throughout the SDLC.
Experience and Skills Specific knowledge, skills, and abilities required by the incumbent to successfully fulfill the Major Duties and perform the Tasks required for this position include:
- 3+ years Performing successful Windows OS updates
- 6+ years total progressive IT experience
- 5+ years of Endpoint Management and Security
- 3+ years Troubleshooting complex experience in endpoint engineering with PowerShell, VBScript and batch scripting. Strong focus on Windows and macOS devices.
- 5+ Experience with device management platforms such as Microsoft Intune, Tanium and/or Jamf.
- 2+ years Strong understanding of network technologies, such as DNS, DHCP, TCP/IP, VPN, and other related technologies.
- 2+ years cloud-based platforms such as Azure AD and Intune, integration with endpoint management solutions.
- Analytical and problem-solving skills.
- Excellent communication and interpersonal skills.
- Ability to work independently and as part of a team in a fast-paced environment.
Minimum Qualifications: - Endpoint Engineer subject-matter expert (SME).
- Experience in managing Azure AD, Intune, Tanium (Jamf would be a plus)
- BS computer science/IT/SW or related field.
- data security and networking experience required.
Skills: | Skills | Required / Desired | Amount | of Experience |
| Demonstrated experience in Device Management | Required | 6 | Years |
| Demonstrated experience with Microsoft Intune | Required | 3 | Years |
| Demonstrated experience using Device Provisioning | Required | 2 | Years |
| Demonstrated experience with PowerShell and Shell scripting | Required | 3 | Years |
| Demonstrated experience with Endpoint Security management solutions | Required | 3 | Years |
| Software Packaging & Distribution | Required | 4 | Years |
| Device policies, settings, and registry | Required | 4 | Years |
| Operating system (OS deployment, patches, and upgrades) | Required | 4 | Years |
| Windows Autopilot Provisioning | Required | 2 | Years |
| BS Degree in IT, Cybersecurity, Engineering, or equivalent experience | Required | | |
Job Tags
Contract work,