Digital Workplace Engineer
About the Role
We are looking for a Digital Workplace Engineer to join our growing Technology team. You will play a key role in driving the continuous improvement, security, and reliability of our end-user computing environment, ensuring our colleagues have a seamless, modern, and secure digital experience.
You will take ownership of our Microsoft 365, Intune, and Endpoint Management ecosystem, managing everything from secure configuration to deployment of applications and updates. You will also have the opportunity to shape and improve our digital workplace strategy, working collaboratively across IT, Security, and Operations.
Key Responsibilities
* Proactively monitor and improve our Microsoft 365 Secure Score, identifying opportunities to strengthen our environment and communicating with key stakeholders.
* Design, implement, and manage Windows update and patch management strategies for cloud-registered devices using Intune and Endpoint Manager (update rings, pilot groups, deferrals).
* Build, deploy, and manage applications using Intune (Win32 / MSI / Line of Business apps), ensuring safe rollouts, rollback plans, and compliance reporting.
* Develop and manage Intune compliance policies and configuration profiles, ensuring that all devices meet security and configuration baselines.
* Collaborate with IT Security to maintain device compliance, endpoint protection, and zero-trust principles.
* Take ownership beyond your immediate responsibilities by identifying, communicating, and resolving issues proactively while respecting governance and established processes.
* Support continuous improvement initiatives within the Digital Workplace, ensuring standardisation and automation where possible.
Essential Skills and Experience
* Strong hands-on experience with Microsoft Intune and Endpoint Manager (device compliance, configuration, and app deployment).
* Deep understanding of the Microsoft 365 ecosystem (Secure Score, Azure AD, Defender for Endpoint, etc.).
* Experience managing Windows Update for Business, patching strategies, and staged deployments.
* Practical knowledge of PowerShell scripting for automation and troubleshooting.
* Proven ability to deploy and manage applications via Intune (Win32, MSI, Line of Business apps).
* Solid understanding of cloud-joined and hybrid Azure AD joined device management.
* Excellent communication and stakeholder engagement skills, with the ability to explain technical changes clearly and influence outcomes.
* Demonstrated proactive, ownership-driven mindset; someone who takes initiative and follows through professionally.
* Experience working within IT governance, documenting actions, and ensuring traceability.
Desirable Skills
* Exposure to third-party MDM or UEM tools (Jamf, MobileIron, Workspace ONE, etc.).
* Experience with conditional access policies and endpoint security baselines.
* Knowledge of Autopilot and modern device provisioning.
* ITIL foundation or equivalent operational discipline.
What We Are Looking For
This role will suit someone who thrives on ownership, improvement, and collaboration. You notice when something isn’t quite right, even outside your remit, and take the initiative to fix it while staying aligned with governance and good communication.
If you are passionate about empowering teams through technology and continuously enhancing the digital workplace experience, we would love to hear from you.