Role Purpose
The End User Computing Engineer will be responsible for managing and maintaining TSL’s end-user device estate, including PCs, laptops, mobile phones, and tablets. The primary focus of this role is to ensure all systems, applications, and devices are secure, compliant, and consistently up to date.
Team Summary
Join a dynamic organisation where growth and positive change are constant, becoming a valued member of our collaborative IT team. In this dynamic environment, you will have the opportunity to expand your skills and knowledge while contributing to the organisation’s technical success. You will collaborate with and report to the Group Head of IT to align with team objectives and ensure effective IT service delivery.
Main Duties and Responsibilities
* Manage and maintain the full lifecycle of end-user devices including provisioning, deployment, updates, and decommissioning.
* Administer and support Windows 11 desktops, as well as iOS and Android mobile devices; ensure optimal performance, stability, and security of all endpoints across the organisation.
Modern Management & Deployment
* Design, implement, and support Microsoft Endpoint Manager solutions including Microsoft Intune and Windows.
* Autopilot: manage device provisioning, configuration profiles, compliance policies, and application deployment.
Patch & Software
* Ensure all devices keep up to date with the latest security patches and application updates.
* Administer and maintain PatchMyPC to automate and standardise third-party application patching; monitor patch compliance and remediate vulnerabilities in a timely manner.
Vulnerability & Security Management
* Work closely with the security team to identify, assess, and remediate vulnerabilities across endpoints using Rapid7 or equivalent tools for vulnerability management and reporting.
* Ensure endpoint compliance with internal security policies and external standards.
* Manage mobile device enrolment and lifecycle across iOS and Android platforms; support BYOD and corporate-owned device strategies.
* Maintain secure mobile policies, including app protection and conditional access.
User Support & Continuous Improvement
* Provide 3rd line support for EUC-related incidents and service requests.
* Troubleshoot complex endpoint issues and drive root-cause analysis.
* Continuously improve device management processes, automation, and user experience.
Required Skills & Experience
* Technical expertise.
* Strong experience with Microsoft Intune and Windows 11 environments.
* Hands-on experience with iOS and Android device management.
* Experience with PatchMyPC or similar patch management tools; ability to package and deploy applications in Microsoft Intune.
* Familiarity with Rapid7 or other vulnerability management platforms.
* Strong understanding of endpoint security best practices.
* Experience with mobile device enrolment and management.
* Strong experience and adherence to change management.
* Knowledge of device compliance, encryption, and security policies; ability to automate and streamline endpoint management processes.
* Experience with Azure AD / Entra ID and conditional access – scripting experience (PowerShell preferred).
* Knowledge of Zero Trust principles.
* Modern workplace strategies; experience in ISO 27001 and Cyber Essentials.
Personal Attributes
* Highly organised with strong attention to detail.
* Proactive.
* Strong problem-solving and analytical skills.
* Excellent communication and stakeholder engagement abilities.
* Ability to work independently and as part of a team.
TSL is an equal opportunity employer.
#J-18808-Ljbffr