Title:  Intune Engineer

We are seeking a skilled and motivated Intune Engineer to join our dynamic IT team. The Intune Engineer will be responsible for the design, implementation, management, and optimization of our Microsoft Intune environment. This role is crucial for ensuring the security and compliance of our endpoint devices (desktops, laptops, mobile devices) while providing a seamless and productive user experience. The ideal candidate will possess a strong understanding of modern device management principles, Azure Active Directory, and related Microsoft technologies.

Responsibilities:

Intune Environment Management:

• Administer and maintain the Microsoft Intune tenant, ensuring its stability, security, and optimal performance.
• Develop, implement and/or manage Intune configuration policies (based on requirement), including device compliance, configuration profiles, conditional access, and endpoint security policies.
• Manage and troubleshoot device enrollment processes (e.g., Autopilot, BYOD).
• Monitor the health and compliance status of managed devices and proactively address any issues.
• Stay up-to-date with the latest Intune features and updates, evaluating their potential benefits for the organization.

Endpoint Security:

• Implement and/or manage endpoint security solutions (based on requirement) within Intune, such as Microsoft Defender for Endpoint integration, application control, and BitLocker management.
• Develop, enforce and/or manage security policies (based on requirement) to protect company data on managed devices.
• Respond to and remediate security incidents related to endpoint devices in collaboration with the security team.

Application Management

• Package, deploy, and manage applications through Intune, ensuring efficient and reliable software distribution.
• Configure application protection policies (APP), based on requirement, to safeguard corporate data within managed and unmanaged applications.
• Troubleshoot application deployment and functionality issues on managed devices.

Asset Management:

• Manage and maintain device & application inventory within Intune.

Collaboration and Documentation:

• Collaborate with other IT teams (e.g., Networking, Security, Helpdesk) to ensure seamless integration of Intune with other systems.
• Develop and maintain comprehensive documentation of Intune configurations, policies, and procedures.
• Provide technical guidance and support to the Helpdesk team for Intune-related issues.

Automation and Optimization

• Identify opportunities to automate Intune tasks and processes using scripting languages (e.g., PowerShell) or other automation tools.
• Continuously evaluate and optimize the Intune environment to improve efficiency and security.

Mobile Device Management (MDM) and Mobile Application Management (MAM)

• Implement and/or manage MDM and MAM strategies, based on requirement, to secure and manage mobile devices accessing company resources.
• Configure and/or enforce policies for iOS, Android, and other mobile operating systems based on requirement.

Requirements:

• Proven experience (typically 3-5 years) in managing and administering a Microsoft Intune environment in an enterprise setting.  
• Microsoft certifications related to Endpoint Management (e.g., Microsoft 365 Certified: Endpoint Administrator Associate).
• Strong understanding of Microsoft Azure Active Directory (Azure AD) and its integration with Intune.
• Experience with device enrollment methods, configuration profiles, compliance policies, and conditional access.
• Solid understanding of endpoint security best practices and technologies.
• Experience with application packaging, deployment, and management through Intune.
• Experience with scripting languages such as PowerShell for automation tasks.
• Excellent troubleshooting and problem-solving skills.
• Good communication and interpersonal skills.
• Ability to document technical procedures clearly and concisely.
• In-depth knowledge of Microsoft365, Group Policy, Exchange Online Protection (EOP), Active Directory Trusts, Active Directory Sites and Services, DNS, DHCP, and DFS.
• Knowledge in Modern Authentication architecture such as Single Sign-On between cloud-based & on-premise systems.
• Experience and practical working knowledge with End User Technology including Virtual Desktop Delivery Systems (VDI), SCCM/Intune/MECM, etc.
• Strong hands-on knowledge in End User Technology areas including Windows 10/11 OS build deployment & support, file and print, Unified Communication and Collaboration tools, software assessment and compatibility verification on Windows devices.
• Good technical knowledge on device management platforms such as Intune, Windows Application Controls etc.
• Proven experience in project collaboration and delivery of key initiatives.

• Experience with other endpoint management solutions (e.g., SCCM/Configuration Manager).
• Knowledge of mobile device operating systems (iOS, Android) and their management capabilities.
• Experience with implementing and managing Microsoft Defender for Endpoint.
• Familiarity with ITIL framework with a good understanding of ITIL change, Problem & Incident Management processes.