Job Title: Senior IT Engineer
Reporting to: Head of IT
Salary: Up to £50,000
About IMP
At IMP we help Multi-Academy Trusts (MATs) take control of their finances. Our MAT-first software is built by people who know the sector inside out. Former trust professionals, finance experts and product specialists are all part of our team. More than half of all MATs in the UK already use IMP to plan with confidence, simplify complex processes and make smarter decisions.
We’re proud to be independent, founder-led and growing fast. Alongside our award-winning products, we’ve built a culture we’re equally proud of. We are ranked as one of the UK’s Top 25 Great Places to Work for mid-sized companies. Respect, collaboration and personal growth sit at the heart of how we work. You’ll find flexibility, support and opportunities to develop here, alongside regular team socials and funded CPD.
Role Description:
This is a hands-on senior technical role within a small, high-impact IT team. You will be the primary escalation point for 2nd and 3rd line support, while also driving forward IT operations, security posture, endpoint management, and automation. You will work alongside the Head of IT and an IT Engineer to deliver a modern, secure, and efficient IT service to the business.
This is not a management role. It is a deep technical role with significant autonomy, suited to someone who thrives on solving problems, improving systems, and shipping improvements continuously
Key responsibilities:
IT Operations & Support
* Act as the primary escalation point for 2nd and 3rd line technical issues across the business
* Manage and maintain endpoint fleet (~150 devices) using Microsoft Intune, including compliance policies, configuration profiles, and application deployment
* Administer and optimise the Microsoft 365 environment (Entra ID, Exchange Online, SharePoint, Teams)
* Own the device lifecycle from provisioning through to retirement, working with our chosen logistics partner
* Maintain and improve the IT service desk, including workflows, automations, and SLA reporting
Security & Compliance
* Manage Microsoft Defender for Endpoint — investigate alerts, tune policies, respond to incidents
* Support the Head of IT in delivering and maintaining ISO 27001 alignment
* Administer Entra Suite (Private Access, Internet Access, ID Governance) and support zero-trust network access initiatives
* Manage Endpoint Privilege Management policies to enforce least-privilege access
* Contribute to security awareness initiatives and support Cyber Essentials certification
* Monitor and improve Microsoft Secure Score and overall security posture
Automation & Projects
* Design and build automations using Power Automate, PowerShell, and Graph API to eliminate manual IT processes
* Automate joiner/mover/leaver workflows, licence assignment, device provisioning, and reporting
* Lead or contribute to IT projects across security, infrastructure, and tooling
* Evaluate and implement new tools and technologies that improve IT service delivery
Device Management & Procurement
* Define and maintain hardware personas (developer, standard user, etc.) and ensure the fleet meets business needs
* Manage hardware procurement relationships and coordinate with the logistics vendor for deployment, retrieval, and recycling
* Plan and execute device refresh programmes as part of ongoing fleet management
Skills, experience, and attributes:
* Strong hands-on experience with Microsoft 365 administration (Entra ID, Exchange Online, Intune, Defender)
* Demonstrable experience managing endpoint fleets at scale using Intune (compliance, configuration profiles, app deployment, Autopilot)
* Solid understanding of identity and access management, conditional access, and zero-trust principles
* Experience with PowerShell scripting and Microsoft Graph API for automation - expect those but willing to consider other automation technologies.
* Familiarity with service desk workflows
* Comfortable working autonomously in a fully remote environment with a small team
* Excellent troubleshooting and diagnostic skills across Windows, macOS, and cloud services
* Interest in or experience with AI tools and their application to IT operations (e.g. AI-assisted automation, copilots, prompt engineering)
Desirable
* Experience with Power Automate or similar workflow automation platforms
* Familiarity with Entra Private Access / Global Secure Access (ZTNA)
* Experience with Endpoint Privilege Management
* Exposure to ITSM platforms (ServiceNow, Freshservice, Halo, or similar)
* Experience supporting a SaaS or technology company
* Familiarity with device lifecycle management platforms
* Experience with Python and/or Bash scripting for automation and tooling
Benefits:
* 27 days of holiday per year plus bank holidays (with a buy option up to an additional 5 days)
* Enhance Maternity and Paternity leave
* AXA Health insurance including dental, optical and mental health
* Broadband allowance
* Home office stipend
* Life assurance (4 x basic salary)
* Encouraged and funded CPD