Senior Systems Engineer

Job Description

Take ownership of the complete Microsoft 365 and Intune architecture across our company's production, development, and demonstration environments, covering tenant strategy, governance, and lifecycle management. Develop, automate, and oversee multi-tenant demonstration and testing environments with pre-populated data, realistic user profiles, and automated resets for our Engineering, Product, and Sales teams. Establish standards and optimize Intune device management, including Autopilot, enrollment, configuration and compliance policies, Win32/MSIX application packaging and deployment, patching, and reporting for Windows and macOS devices. Handle iOS and Android MDM as necessary. Control the laptop deployment setup, creating standard Windows images, baseline configurations, and endpoint security policies in collaboration with the Security team. Implement repeatable infrastructure-as-code and automation solutions (PowerShell, Microsoft Graph, Bicep/Terraform, CI/CD) to automate environment setup and enforce policies. Work with the Security team to define and implement Entra ID policies, such as conditional access, MFA, RBAC/PIM, and zero trust configurations, integrating with our Okta-based identity system. Oversee M365 tenant administration across various environments, managing application registrations, Graph API permissions, license optimization, and Entra configuration. Offer Tier 3 support and conduct root-cause analysis for problems on the Microsoft platform. Create monitoring, alerting, and reporting systems to proactively identify and address issues before they affect employees. Develop and maintain clear documentation, runbooks, architecture diagrams, and standard configurations. Enable self-service capabilities where possible. Work with Engineering and Product teams on validation scenarios and with Sales teams to create accurate and engaging demo environments. Track KPIs related to environment readiness and Intune adoption.

Qualifications

1. 7+ years of experience in IT systems engineering, with deep expertise in Microsoft Intune and M365 administration at scale. 2. Hands-on experience managing multi-tenant Microsoft environments, including production, dev, and demo configurations. 3. Proven success building automated demo and test labs, including data seeding and environment reset workflows. 4. Strong PowerShell and Microsoft Graph API skills; solid infrastructure-as-code experience (Bicep or Terraform) and CI/CD pipelines. 5. Deep Intune experience: Autopilot, Win32/MSIX packaging, configuration and compliance policies, BitLocker/FileVault, patching, and endpoint analytics across both macOS and Windows. 6. Experience with Entra ID (Azure AD), including conditional access, SSO, identity governance, and integration with third-party identity providers such as Okta. 7. Solid understanding of security frameworks and best practices (Zero Trust, least privilege, conditional access, MFA). 8. Strong communication and stakeholder management skills, with the ability to translate technical concepts for non-technical audiences including legal professionals.

Benefits

- Comprehensive health, dental, and vision coverage - Retirement benefits (401k match up to 4%) - Flexible PTO