CrawlJobs Logo

Senior Enterprise Endpoint Engineer

tier4group.com Logo

Tier4 Group

Location Icon

Location:
United States , Atlanta

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We are seeking a Senior Enterprise Endpoint Engineer, a strategic, senior-level technical leader responsible for securing, governing, and managing the full lifecycle of enterprise endpoints across a 6,500+ user environment. This role is the organization’s subject matter expert for endpoint security architecture, device compliance, patch governance, and modern device management using platforms such as Microsoft Intune and SCCM/JAMF. You will partner with Information Security, Infrastructure, Risk & Compliance, and IT Operations teams to strengthen endpoint reliability, enhance lifecycle processes, and support a secure, modern workplace at scale.

Job Responsibility:

  • Own enterprise endpoint management standards and operational health for 6,500+ devices
  • Develop and maintain configuration baselines aligned to corporate IT and compliance frameworks (SOC 2, HIPAA, NIST, CIS)
  • Lead enterprise patch management, update governance, and reporting to ensure timely and consistent deployments
  • Build and maintain Intune and SCCM policies to promote device stability, compliance, and performance
  • Partner with Information Security and audit teams to address findings and strengthen endpoint controls
  • Support regulatory, audit, and cyber insurance requirements through documentation, evidence gathering, and structured processes
  • Create executive dashboards tracking patch status, encryption health, device performance, and compliance posture
  • Analyze endpoint trends and recommend proactive improvements to enhance reliability and reduce technical debt
  • Architect and maintain SCCM and Intune environments in hybrid and cloud-first scenarios
  • Lead Windows OS lifecycle strategy, including feature updates, update rings, and compliance policies
  • Design and maintain secure imaging, provisioning, and deployment standards
  • Drive modern management initiatives: Autopilot, co-management, conditional access, zero-touch provisioning
  • Administer endpoint encryption (BitLocker), Defender integration, and compliance configurations
  • Automate remediation, configuration enforcement, and operational workflows using PowerShell and Microsoft-native tooling
  • Serve as the Tier 3 escalation point for complex endpoint issues and security events
  • Mentor junior engineers and Service Desk staff on modern endpoint practices and secure operations
  • Lead cross-functional projects to enhance endpoint health, standardize configurations, and reduce security risk
  • Develop capacity planning strategies to support enterprise growth and M&A integration efforts

Requirements:

  • 8+ years of enterprise endpoint management experience
  • Hands-on experience with: Microsoft Intune / Endpoint Manager
  • Azure AD / Entra ID
  • Windows administration (workstations and servers)
  • SCCM / Microsoft Endpoint Configuration Manager
  • Enterprise patch and vulnerability management
  • Scripting experience (PowerShell)
  • ITIL knowledge and change management experience
  • Excellent communication skills
  • Bachelor’s degree in IT or related field (required)
  • 5+ years of advanced hands-on experience with networking fundamentals (IP, DNS, LAN/WAN)
  • Strong knowledge of compliance frameworks (SOC 2, HIPAA, ISO) and their impact on endpoint controls
  • Ability to balance security enforcement with operational efficiency and user experience

Nice to have:

  • Microsoft Security knowledge and certifications
  • Endpoint-focused certifications (Intune, SCCM, etc.)
  • Experience with Defender for Endpoint, Conditional Access, Autopilot, and modern security enforcement models

Additional Information:

Job Posted:
March 19, 2026

Work Type:
On-site work
Icon
Tier4 Group - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Enterprise Endpoint Engineer

Senior Network Test Engineer

Inabia is seeking a highly skilled Senior Network Test Engineer with deep hands-...
Location
Location
United States , Bellevue, WA; Redmond, WA
Salary
Salary:
Not provided
inabia.com Logo
Inabia Solutions & Consulting
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in telecom or advanced network testing (LTE/5G/WiFi/broadband)
  • Strong knowledge of IPv4/IPv6, subnetting, routing, VLANs, DHCP, DNS, NAT, VPNs, and enterprise network configuration
  • Hands-on experience with broadband gateways, home routers, WiFi APs, 5G/LTE CPEs, or ISP-grade network equipment
  • Proficiency in QXDM, QCAT, Wireshark, tcpdump, iPerf, TEMS, X-Cal, or similar tools
  • Experience testing VoLTE/VoWiFi, IMS, SIP/RTP traffic, mobility, call flows, and service continuity
  • Proven ability to build, manage, and debug complex test environments
  • Strong documentation, troubleshooting, and communication skills
  • Must be legally authorized to work in the United States without sponsorship
Job Responsibility
Job Responsibility
  • Conduct comprehensive testing across LTE, LTE-A, 5G NSA/SA, WiFi 5/6/6E, and residential/enterprise broadband access technologies
  • Validate throughput, latency, jitter, packet loss, QoE, and service continuity across fixed and mobile access
  • Test and evaluate broadband gateways, CPEs, modems, routers, mesh systems, and indoor coverage solutions
  • Perform multi-RAT test scenarios: attach, registration, CA, EN-DC, VoLTE/VoWiFi, VoNR, handovers, fallback, and failover
  • Configure and test IPv4/IPv6 addressing, subnets, VLANs, DHCP, NAT, DNS, and routing behaviors
  • Validate VPN configurations (IPsec, SSL, WireGuard, OpenVPN) including tunnel setup, failover, and throughput impacts
  • Execute test cases involving LAN/WAN routing, QoS, firewall rules, port forwarding, and enterprise-grade security controls
  • Analyze L2–L7 network behavior using tcpdump, Wireshark, iPerf, TR-069/USP, SNMP, syslogs, IP routing tables, and traceroute/pathping
  • Build and maintain multi-node testbeds including 5G CPEs, WiFi APs, broadband gateways, SIM configs, VPN endpoints, and core network simulators
  • Integrate various network elements (UEs, routers, switches, servers) and configure network services to replicate real enterprise and residential environments
  • Fulltime
Read More
Arrow Right

Senior Network Test Engineer

Inabia is seeking a highly skilled Senior Network Test Engineer to support advan...
Location
Location
Germany , Munich
Salary
Salary:
Not provided
inabia.com Logo
Inabia Solutions & Consulting
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in LTE/5G and/or WiFi network testing, broadband CPE testing, or IP networking validation
  • Strong understanding of IP networking principles (subnetting, routing, VLANs, NAT, firewall rules, DHCP, DNS)
  • Hands-on experience with test tools (e.g., Wireshark, iPerf, tcpdump, TEMS, X-Cal, Actix, QXDM)
  • Able to build, configure, and troubleshoot complex testbeds across wireless and IP domains
  • Strong analytical and troubleshooting skills across RF, IP, and application layers
  • Excellent documentation and communication skills
  • Must possess the legal right to work in Germany (e.g., EU citizen, German work permit, EU Blue Card)
Job Responsibility
Job Responsibility
  • Perform end-to-end testing for LTE, LTE-A, 5G NSA/SA, and WiFi 5/6/6E
  • Validate attach/registration, CA, EN-DC, VoLTE/VoWiFi, VoNR, handovers, fallback, and mobility scenarios
  • Conduct throughput, latency, jitter, and packet-loss testing using standardized benchmarking methods
  • Analyze RAN KPIs and troubleshoot coverage, mobility, capacity, and interference issues
  • Test residential and enterprise broadband devices including routers, gateways, mesh WiFi systems, CPEs, modems, and home networking equipment
  • Execute performance, reliability, and stability tests on broadband/WAN connectivity (fiber, DSL, wireless broadband, Ethernet backhaul)
  • Validate LAN/WAN configuration workflows, device onboarding, and end-to-end connectivity
  • Configure and test IPv4/IPv6 addressing, subnetting, VLANs, DHCP, DNS, NAT, port forwarding, and firewall rules
  • Validate VPN tunnel setup and performance (IPsec, SSL, WireGuard, OpenVPN)
  • Troubleshoot routing, DNS resolution issues, gateway conflicts, and Layer 2/Layer 3 connectivity
  • Fulltime
Read More
Arrow Right
New

Senior Endpoint Engineer - Enterprise & Executive Services

We are seeking a highly experienced Senior Endpoint Engineer with over 15 years ...
Location
Location
United States , Pittsburgh
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of strong expertise in: Microsoft Intune & Endpoint Manager
  • Jamf Pro / Kandji (macOS management)
  • SCCM / MECM
  • Entra ID (Azure AD), Active Directory, Group Policy
  • 5 to 8 years of experience with Mobile Threat Defense tools (e.g., Zimperium)
  • 3 to 5 years of advanced scripting and automation (PowerShell preferred)
  • Deep understanding of endpoint security, compliance, and enterprise IT architecture
  • Experience supporting executive-level stakeholders
  • Strong troubleshooting and problem-solving skills
  • Bachelor’s degree in Information Technology, Computer Science, or related field (or equivalent experience)
Job Responsibility
Job Responsibility
  • Architect, implement, and manage enterprise endpoint solutions using Microsoft Intune, Jamf Pro, and Kandji
  • Lead endpoint lifecycle management including provisioning, deployment, patching, and decommissioning
  • Design and deploy Mobile Device Management (MDM) and Mobile Threat Defense (MTD) solutions (e.g., Zimperium)
  • Administer identity and access management using Entra ID (Azure AD), Active Directory, and Okta
  • Drive endpoint security strategies, compliance policies, and risk mitigation initiatives
  • Manage enterprise-scale Windows (10/11) and macOS environments
  • Automate endpoint operations using PowerShell and modern deployment tools
  • Lead Microsoft Teams Rooms (MTR) upgrades and collaboration technology initiatives
  • Provide high-touch executive/VIP IT support and ensure premium service delivery
  • Implement zero-touch provisioning and secure onboarding processes
  • Fulltime
Read More
Arrow Right
New

Endpoint & AD Senior Engineer

We are working with a company that are globally recognised in what they do and a...
Location
Location
United Kingdom , London
Salary
Salary:
70000.00 - 85000.00 GBP / Year
planetrecruitment.co.uk Logo
PLANET RECRUITMENT SERVICES LTD
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 6 years Windows endpoint engineering in enterprise environments (15,000+ device scale)
  • Minimum 5 years Microsoft Entra ID (Azure AD) administration including Conditional Access exposure
  • Minimum 5 years Active Directory administration in multi-forest or large single-forest environments
  • Minimum 3 years Microsoft Entra Connect Sync (or Azure AD Connect) – must be able to troubleshoot sync independently
  • Minimum 3 years Microsoft Intune administration in production at scale
Job Responsibility
Job Responsibility
  • Active Directory administration across multiple forests (user lifecycle, group management, OU design, GPO maintenance)
  • Entra Connect Sync operations – monitor sync health, troubleshoot sync failures, resolve object conflicts, manage staging modes
  • Entra Hybrid Join troubleshooting for Windows devices
  • Intune policy operations: compliance, configuration, app deployment, Update Rings
  • Windows Autopilot profile management – troubleshooting, adjustments, new scenario support
  • Application packaging and deployment via Intune (Win32 apps, MSI, scripts)
  • Device compliance troubleshooting and remediation
  • Fulltime
Read More
Arrow Right
New

Senior Endpoint Engineer (SCCM / Intune)

We are seeking a Senior Endpoint Engineer (SCCM / Intune) to design, implement, ...
Location
Location
United States , Plano
Salary
Salary:
Not provided
technologent.com Logo
Technologent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in enterprise endpoint management or systems engineering
  • Strong expertise with Microsoft Endpoint Configuration Manager (SCCM)
  • Hands-on experience with Microsoft Intune and Autopilot
  • Strong PowerShell scripting skills for automation and task management
  • Solid understanding of Windows 10/11, Active Directory, and Group Policy
  • Strong troubleshooting and problem-solving skills in enterprise environments
  • Excellent communication and collaboration skills
Job Responsibility
Job Responsibility
  • Design and implement Group Policy baselines for Windows 10 and Windows 11 environments aligned with security best practices
  • Develop and manage OS deployment solutions using SCCM task sequences and Intune Autopilot profiles
  • Create and maintain WinPE boot images and manage hardware drivers within endpoint environments
  • Manage patching and compliance using SCCM Automatic Deployment Rules and Intune update rings
  • Monitor and troubleshoot patch deployments to ensure endpoint security and compliance
  • Develop automated solutions for vulnerability identification and remediation using SCCM and PowerShell
  • Build and maintain PowerShell scripts to automate endpoint management processes and improve efficiency
  • Design, package, and deploy applications using SCCM and tools such as PSADT
  • Collaborate with Service Desk and end users to support User Acceptance Testing (UAT) for deployments and changes
  • Support endpoint security and compliance initiatives across the environment
  • Fulltime
Read More
Arrow Right

Senior Endpoint Security Engineer

Our direct client is Endpoint Security Engineer who will be embedded within the ...
Location
Location
United States , Lemont
Salary
Salary:
Not provided
myticas.com Logo
Myticas Consulting
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Endpoint engineering expertise
  • Strong cyber security skills
  • Modern, secure coding practices
  • 3–5 years of experience in complex large enterprise environments
  • Hands-on expertise with SCCM, Jamf Pro, and/or Microsoft Intune for Windows and macOS endpoints
  • Experience packaging and deploying applications, security updates, and scripts across enterprise platforms
  • Familiarity with Group Policy and Intune for configuration management
  • Proficiency in automation scripting (PowerShell, Bash, Python) with emphasis on modular, reusable, and secure code
  • Experience with version control systems (Git) and collaborative development workflows (branching, pull requests, peer review)
  • Knowledge of CVE program, NIST Vulnerability Database, CISA Known Exploited Vulnerability Database, and overall vulnerability management processes
Job Responsibility
Job Responsibility
  • Identify, analyze, and prioritize endpoint vulnerabilities using tools such as Tenable, Axonius, Jamf Pro, SCCM, Intune, Active Directory, and Entra
  • Assess environmental and operational factors that may impact remediation feasibility and timelines
  • Provide risk-based recommendations to improve the vulnerability management program
  • Develop, test, and deploy remediation scripts and configurations for Windows and macOS endpoints using tools such as Jamf, ConfigMgr/SCCM, Intune, and Group Policy
  • Write clear, maintainable scripts and automation (e.g., modular logic, meaningful naming, basic error handling and logging) that can be reused by the team
  • Document scripts and configurations with purpose, parameters, usage instructions, and any security considerations to support troubleshooting and cross-team adoption
  • Maintain an organized library of remediation artifacts
  • if applicable, help establish and use a version-controlled repository (e.g., Git) to track changes and support basic peer review
  • Contribute to secure baseline configurations aligned with Argonne CSPP, NIST 800-53 Rev 5, CIS Benchmarks, Microsoft Security Baselines, DISA STIGs, and/or macOS Security Compliance Project
  • Assist in development, testing, implementation, documentation of baseline configurations
Read More
Arrow Right

Senior Security Engineer

Come be a part of an exciting and ever-changing program that provides a comprehe...
Location
Location
United States , Columbia, Maryland
Salary
Salary:
155000.00 - 170000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of progressive experience designing, engineering, and securing enterprise‑scale IT systems across complex network environments
  • Expert‑level knowledge in architecting, deploying, and maintaining security infrastructure, including endpoint protection, vulnerability management, configuration management, and enterprise hardening solutions
  • Demonstrated experience leading security engineering initiatives, including implementing advanced security controls, designing secure configurations, and overseeing patch and update strategies for Linux and Windows environments
  • Extensive hands‑on experience with enterprise security tools, such as Ivanti, WSUS, Trellix, Tenable, or equivalent platforms, including tool integration, optimization, and lifecycle management
  • Strong understanding of security frameworks and compliance requirements, such as NIST RMF, NIST 800‑53, STIGs, or equivalent federal/DoD standards
  • Demonstrated ability to lead complex troubleshooting efforts, perform root‑cause analysis, and drive long‑term remediation strategies across enterprise systems
  • Experience mentoring junior engineers, providing technical leadership, and contributing to team capability development
  • Required IAT/Management‑level certification: one or more of the following — CASP+, CISSP, or equivalent senior‑level certification
  • Required vendor certification in one or more relevant technologies (e.g., Microsoft, VMware, Cisco, NetApp, Pure Storage, HP, Dell, Linux+, Red Hat, HBSS, ACAS). Candidates without an active certification must obtain at least one within 6 months of hire
  • TS/SCI clearance required
Job Responsibility
Job Responsibility
  • Architect, implement, and maintain enterprise security controls and infrastructure components across Windows, Linux, and virtualized environments
  • Lead the design, deployment, configuration, and lifecycle management of endpoint hardening and security tools (e.g., Ivanti, WSUS, Trellix, Tenable)
  • Oversee patch management processes, including OS updates, third‑party software updates, and administrative tool upgrades
  • Provide expert‑level troubleshooting, root‑cause analysis, and performance optimization for complex security and infrastructure issues
  • Evaluate, recommend, and lead the adoption of new security tools, technologies, and methodologies
  • Develop and maintain security documentation, including SSPs, RMF artifacts, engineering diagrams, and operational procedures
  • Design and implement security requirements within enterprise business processes and technical architectures
  • Support vulnerability assessments, interpret results, and develop risk‑based mitigation strategies
  • Conduct system hardening, configuration baselining, and compliance scanning to ensure adherence to security standards
  • Support and guide incident response activities, including forensic analysis and containment strategies
What we offer
What we offer
  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
  • Fulltime
Read More
Arrow Right

Systems Engineering Specialist - Tanium

This role is responsible for deploying, configuring, and supporting the Tanium p...
Location
Location
India , Noida
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-9 years of experience in enterprise endpoint management with hands-on specialization in Tanium platform deployment and support
  • HCL Tanium — Server, Module Server, Zone Proxy, and Client deployment and administration (intermediate to advanced level)
  • Tanium Patch, Deploy, Interact, Inventory, Comply, Connect — module configuration and operations
  • Tanium Client deployment via GPO, SCCM, Intune, and PowerShell scripting
  • Tanium sensor, package, and saved question development
  • Tanium RBAC — user roles, computer groups, content set management
  • Tanium Relevance Language for custom sensor and targeting development
  • PowerShell and Batch scripting for Tanium automation and client management
  • Tanium Connect integration with SIEM and ITSM platforms
  • Windows, Linux, and macOS endpoint management fundamentals
Job Responsibility
Job Responsibility
  • Deploy and configure Tanium Server, Tanium Module Server, Zone Proxies, and Tanium Client across enterprise environments
  • Execute Tanium platform deployments following defined architecture standards, deployment runbooks, and organizational guidelines
  • Manage Tanium Client deployment at scale across Windows, Linux, and macOS endpoints using GPO, SCCM, Intune, and script-based methods
  • Configure Tanium Zone Proxies for DMZ and remote site endpoint connectivity and visibility
  • Set up and configure Tanium modules post-deployment including Tanium Patch, Deploy, Interact, Inventory, Comply, and Connect
  • Manage Tanium platform SSL certificates, authentication configurations, and RBAC role assignments during and post-deployment
  • Execute Tanium platform upgrades, module updates, and hotfix deployments following change management procedures
  • Validate post-deployment platform health — server connectivity, client registration rates, module functionality, and data accuracy
  • Document deployment configurations, architecture decisions, and post-deployment validation results for knowledge transfer
  • Support proof-of-concept (POC) and pilot deployments for new Tanium modules or platform expansions
  • Fulltime
Read More
Arrow Right