MetroSys Inc
Position Summary:
We are seeking an experienced
SCCM / Intune Engineer
responsible for the
design, deployment, administration, and support
of
Microsoft Endpoint Configuration Manager (SCCM)
and
Microsoft Intune . This role will focus on
modern endpoint management, OS deployment, patch management, application packaging, and security policies
across hybrid environments. The ideal candidate should have deep expertise in
Microsoft Intune (Endpoint Manager), SCCM, Windows Autopilot, and Group Policy , with experience supporting
enterprise-wide device management and security strategies . Key Responsibilities:
Endpoint Management & Device Deployment:
Design, implement, and manage
SCCM and Intune solutions
for modern endpoint management. Configure
Windows Autopilot
for device provisioning and zero-touch deployment. Oversee
OS deployment, imaging, and device enrollment
for Windows, macOS, iOS, and Android. Maintain
group policies, compliance policies, and conditional access
for secure device management. Patch Management & Software Deployment:
Manage
Windows Update for Business (WUfB)
and SCCM-based patch deployment. Package and deploy
software applications, updates, and drivers
via SCCM and Intune. Automate deployment tasks using
PowerShell scripting and Intune configuration profiles . Ensure
timely security patches, vulnerability remediation, and compliance enforcement . Security & Compliance:
Implement
BitLocker encryption, Defender for Endpoint policies, and security baselines . Enforce
zero-trust security models, conditional access, and compliance policies . Monitor, analyze, and resolve endpoint security threats using
Microsoft Defender ATP . Work with security teams to
align device management with cybersecurity standards (NIST, CIS, ISO 27001, etc.) . Monitoring & Troubleshooting:
Use
SCCM, Intune, and Log Analytics
to monitor device health and troubleshoot issues. Develop custom
reports and dashboards
for system performance and compliance tracking. Optimize SCCM and Intune environments for
performance, reliability, and scalability . Troubleshoot
software distribution, device enrollment, and policy enforcement issues . Automation & Process Improvement:
Automate tasks using
PowerShell, Azure Automation, and Graph API . Develop
self-service options for users , improving efficiency and reducing manual workload. Optimize and document
SCCM/Intune processes, configurations, and best practices . Required Qualifications & Experience:
5+ years
of experience in
SCCM / MECM (Microsoft Endpoint Configuration Manager) and Intune . Strong experience with
Windows Autopilot, Group Policy, and Active Directory . Expertise in
application packaging, deployment, and patch management . Proficiency in
PowerShell scripting
for automation and configuration management. Experience with
BitLocker, Defender ATP, Conditional Access, and security baselines . Knowledge of
Azure AD, Intune device compliance, and hybrid join scenarios . Hands-on experience with
mobile device management (MDM) and mobile application management (MAM) . Strong troubleshooting skills for
device enrollment, policy conflicts, and patch failures .
We are seeking an experienced
SCCM / Intune Engineer
responsible for the
design, deployment, administration, and support
of
Microsoft Endpoint Configuration Manager (SCCM)
and
Microsoft Intune . This role will focus on
modern endpoint management, OS deployment, patch management, application packaging, and security policies
across hybrid environments. The ideal candidate should have deep expertise in
Microsoft Intune (Endpoint Manager), SCCM, Windows Autopilot, and Group Policy , with experience supporting
enterprise-wide device management and security strategies . Key Responsibilities:
Endpoint Management & Device Deployment:
Design, implement, and manage
SCCM and Intune solutions
for modern endpoint management. Configure
Windows Autopilot
for device provisioning and zero-touch deployment. Oversee
OS deployment, imaging, and device enrollment
for Windows, macOS, iOS, and Android. Maintain
group policies, compliance policies, and conditional access
for secure device management. Patch Management & Software Deployment:
Manage
Windows Update for Business (WUfB)
and SCCM-based patch deployment. Package and deploy
software applications, updates, and drivers
via SCCM and Intune. Automate deployment tasks using
PowerShell scripting and Intune configuration profiles . Ensure
timely security patches, vulnerability remediation, and compliance enforcement . Security & Compliance:
Implement
BitLocker encryption, Defender for Endpoint policies, and security baselines . Enforce
zero-trust security models, conditional access, and compliance policies . Monitor, analyze, and resolve endpoint security threats using
Microsoft Defender ATP . Work with security teams to
align device management with cybersecurity standards (NIST, CIS, ISO 27001, etc.) . Monitoring & Troubleshooting:
Use
SCCM, Intune, and Log Analytics
to monitor device health and troubleshoot issues. Develop custom
reports and dashboards
for system performance and compliance tracking. Optimize SCCM and Intune environments for
performance, reliability, and scalability . Troubleshoot
software distribution, device enrollment, and policy enforcement issues . Automation & Process Improvement:
Automate tasks using
PowerShell, Azure Automation, and Graph API . Develop
self-service options for users , improving efficiency and reducing manual workload. Optimize and document
SCCM/Intune processes, configurations, and best practices . Required Qualifications & Experience:
5+ years
of experience in
SCCM / MECM (Microsoft Endpoint Configuration Manager) and Intune . Strong experience with
Windows Autopilot, Group Policy, and Active Directory . Expertise in
application packaging, deployment, and patch management . Proficiency in
PowerShell scripting
for automation and configuration management. Experience with
BitLocker, Defender ATP, Conditional Access, and security baselines . Knowledge of
Azure AD, Intune device compliance, and hybrid join scenarios . Hands-on experience with
mobile device management (MDM) and mobile application management (MAM) . Strong troubleshooting skills for
device enrollment, policy conflicts, and patch failures .