Mandatory Skills: MECM AND SCCM AND EUC
Key Responsibilities:
Windows Engineering & Endpoint Platform
* Engineer, maintain, and optimize a global Windows 11 desktop environment, ensuring stability, performance, and security.
* Own OS image engineering, lifecycle management, configuration baselines, and feature update strategies.
* Lead complex troubleshooting efforts using logs, diagnostics, and telemetry.
Modern Device Management
* Design, implement, and manage Microsoft Intune for configuration, policy enforcement, compliance, application packaging, and advanced device management.
* Lead Windows Autopilot deployments, provisioning workflows, and zero‑touch onboarding processes.
* Integrate Intune with Azure AD, security baselines, conditional access, and compliance frameworks.
MECM (Microsoft Endpoint Configuration Manager)
* Drive all aspects of MECM administration and engineering, including:
* Task sequence creation and optimization (OSD, refresh, break/fix workflows)
* Patch management and compliance reporting
* Infrastructure health and performance tuning
* Implement and automate MECM‑related processes to reduce operational overhead.
Automation & PowerShell Development
* Design and maintain advanced PowerShell automation for:
* Automation
* Configuration enforcement
* Remediation scripts
* User provisioning
* Data transformation and reporting
* Develop reusable automation modules that support engineering and operational workflows.
Monitoring & Digital Experience (Nexthink – Nice to Have)
* Use Nexthink (or similar DEX tools) to monitor endpoint performance, identify trends, and proactively improve user experience.
* Develop custom remote actions, dashboards, and investigations (if Nexthink is available).
Operational Excellence
* Provide 3rd‑line engineering support for escalated desktop issues, including collaboration with security, networking, server engineering, and service desk teams.
* Participate in an on‑call rotation and support planned weekend engineering activity for global deployments.
* Maintain detailed documentation, runbooks, and architecture diagrams.
* Contribute to strategic projects such as hardware refresh, OS migrations, security initiatives, and global transformation programmes.
Required Skills & Experience
Technical Expertise
* Extensive hands‑on experience with Windows 11 OS, including registry, file systems, event logs, troubleshooting techniques, and performance tuning.
* Deep knowledge of Intune, Autopilot, and Azure AD device management.
* Strong engineering‑level experience with MECM, including deployments, task sequences, and compliance.
* Advanced PowerShell developer, capable of writing clean, modular, production‑ready automation.
* Experience with enterprise patching, software distribution, and GPO/modern policy management.
Bonus Skills
* Experience with Nexthink (dashboards, investigations, RA scripting).
* Knowledge of Active Directory, Group Policy, conditional access, and security baselines.
* Understanding of end‑user hardware (laptops, workstations, peripherals) and driver/firmware lifecycle management.
* Familiarity with virtualization (VDI), remote access technologies, and ITIL processes.
Professional Skills
* Strong communication skills, able to work effectively with global teams and non‑technical users.
* Ability to manage multiple priorities in a high‑pressure environment.
* Proven experience driving improvements, standardization, and automation.
* Analytical mindset with strong attention to detail.
Education & Experience
* Bachelor's degree in Computer Science, Information Technology, or equivalent professional experience.
* 5+ years of experience in desktop engineering or endpoint platform engineering within an enterprise environment.
* Prior experience in a global or highly regulated industry is a strong plus.