Intune Endpoint Solutions Manager

• Lead the architectural design, perform comprehensive review and ongoing optimization of the Microsoft Intune environment, to align with corporate security frameworks, operational best practices, and business requirements.
• Design, document, and implement robust Intune solutions for Windows Autopilot provisioning, Azure AD Join, Hybrid Azure AD Join scenarios, and effective co-management strategies with SCCM.
• Develop and maintain detailed documentation for Intune architecture, configuration standards, operational procedures, and disaster recovery plans.

• Design, define, rigorously test, and deploy Intune configuration profiles, device compliance policies, and Conditional Access policies tailored for corporate Windows devices, ensuring alignment with security baselines.
• Develop, implement, and manage Mobile Application Management (MAM) and Mobile Device Management (MDM) policies across various device platforms as required by the organization.
• Ensure all Intune policies are aligned with established security baselines, regulatory requirements, and industry best practices for endpoint protection. SCCM & Active Directory Interoperability:
• Architect and maintain seamless interoperability and co-management functionalities between Microsoft Intune, System Center Configuration Manager (SCCM), and on premises Active Directory services [User Query].
• Manage, troubleshoot, and optimize configurations for hybrid Azure AD joined devices, ensuring consistent policy enforcement and user experience.
• Effectively leverage and translate Group Policy Objects (GPOs) from Active Directory to Intune configuration profiles where appropriate, maintaining policy parity during migration or co-existence scenarios. Classified as Internal Endpoint Operations & Management: o Oversee and manage the deployment, regular updates, and security patching of Windows operating systems (Windows 10/11) and the Microsoft 365 Applications suite using Intune and Windows Update for Business.
• Manage the full lifecycle of application deployment, including packaging (MSI, EXE, Win32), testing, and distribution of software to endpoints via Intune.
• Continuously monitor device health, compliance status, and deployment success rates using Intune reporting and analytics, providing regular status updates and proactively addressing identified issues or vulnerabilities.
• Provide Tier 3 expert-level support and advanced troubleshooting for complex Intunerelated issues and broader endpoint management challenges.

• Collaborate closely with internal security and compliance teams to implement, enforce, and audit endpoint hardening measures and security standards through Intune policies and configurations.
• Configure and manage the integration of Intune with Microsoft Defender for Endpoint and other relevant Microsoft 365 security services to enhance threat detection and response capabilities

• Bachelor's degree in an IT-related field or equivalent experience.
• Minimum of 5-7 years of hands-on experience of progressive experience in IT, with at least 5 years of focused, hands-on experience in architecting, deploying, configuring, and managing Microsoft Intune and related endpoint management solutions in large-scale corporate environments.
• Demonstrable, in-depth experience in managing complex hybrid environments involving SCCM and on-premises Active Directory co-existing and interoperating with Intune and Azure Active Directory.
• Quick learner with the ability to adapt to new technologies.
• Proficient in configuring and administering desktops and servers.
• Strong documentation skills.
• Excellent team player with effective interpersonal and communication skills

Seatrium