The Functionary
Website:
thefunctionary.com
Job details:
This role focuses on customer onboarding, implementation, and operational support of Microsoft Intune environments across multiple tenants.
The ideal candidate will have deep experience with:
- Microsoft Intune
- Windows Autopilot
- Microsoft Autopatch and Intune patching
- Security baselines and endpoint hardening
- Application management (MAM / App Protection Policies)
- PowerShell automation and remediation scripts
-
-
This role requires an engineer who can successfully onboard new customers into the Modern Endpoint service, troubleshoot complex endpoint issues, and continuously improve automation and operational efficiency.
Experience working in a Managed Service Provider (MSP) environment and supporting multi-tenant Intune environments is strongly preferred.
Key Responsibilities:
Customer Onboarding & Implementation
- Lead technical onboarding of customers into the Modern Endpoint service
- Configure and deploy Intune policies
- Implement Windows Autopilot provisioning workflows
- Deploy device configuration profiles, compliance policies, and security baselines
- Configure Microsoft Autopatch and Windows Update for Business
-
-
Endpoint Security & Compliance
- Implement and troubleshoot Intune security baselines
- Configure endpoint hardening aligned with Microsoft and CIS standards
- Troubleshoot compliance policy conflicts and device health issues
- Manage BitLocker policies and device encryption enforcement
-
-
Application Management
- Deploy and maintain Intune application deployments
- Implement Mobile Application Management (MAM) and App Protection Policies
- Support application packaging and deployment using tools such as:
- Patch My PC Cloud
- Microsoft Store apps
- Win32 apps
- Troubleshoot application deployment failures and policy conflicts
-
-
Automation & Scripting
- Develop and maintain PowerShell automation scripts
- Create Intune remediation scripts for endpoint health and configuration drift
- Assist with automation and reporting, leveraging Microsoft Graph where appropriate
-
-
Troubleshooting & Operations
- Provide expert-level troubleshooting for:
- Autopilot enrollment issues
- Intune policy conflicts
- Autopatch deployment issues
- Security baseline conflicts
- Device compliance problems
- Analyze logs and endpoint telemetry to identify root cause issues
- Support multi-tenant Intune environments
- You should be able to understand why devices are not getting patches, why devices are not being encrypted, why office updates are not applying, and develop solutions to resolve those issues.
-
-
Required Skills & Experience
Technical Expertise
- Deep experience with Microsoft Intune
- Experience implementing Windows Autopilot
- Experience managing Microsoft Autopatch
- Strong understanding of Windows Update for Business
- Experience with Intune Security Baselines, Open Intune Baseline, and CIS Baselines.
- Experience with Mobile Application Management (MAM), App Protection Policies, and Compliance Policies
-
-
Automation
- Strong PowerShell scripting experience
- Experience writing remediation scripts
- Familiarity with Microsoft Graph API
-
-
Endpoint Troubleshooting
- Experience troubleshooting:
- Autopilot provisioning
- Intune policy conflicts
- Endpoint compliance issues
- Update and patching failures
- Security baseline conflicts
-
-
Platform Knowledge
- Microsoft Entra ID
- Windows 10/11 endpoint management
- Device compliance and conditional access
- Endpoint security best practices
- Mobile devices
Preferred Experience
- Experience in a Managed Service Provider (MSP) environment
- Multi-tenant Intune management experience
- Microsoft certifications such as:
- Microsoft Endpoint Administrator
- Microsoft Security Administrator
-
-
Soft Skills
- Strong troubleshooting and analytical mindset
- Ability to manage multiple customer environments
- Excellent documentation and communication skills
- Ability to work cross-functionally with service delivery teams
Click on Apply to know more.