Senior Endpoint Infrastructure Engineer

EverOps is the most trusted consulting partner to technology-driven organizations. We solve complex technical challenges by embedding elite engineers and proven processes that ensure outcomes across DevOps, IT and Security operations. Since 2012, we have empowered companies like Coinbase, Snowflake and Zendesk to become the leading brands you know today.

We are seeking a highly skilled Endpoint Infrastructure Engineer to join our network infrastructure team. This role is responsible for designing, deploying, securing, and managing endpoint devices and Windows server infrastructure across the organization. This engineer will work closely with IT security, identity and access management (IAM), and networking engineers to ensure a seamless, secure, and efficient endpoint infrastructure.

Key Responsibilities:

• Design, deploy, and manage endpoint infrastructure (Jamf, Kandji, SCCM, Intune) across Windows, macOS, and Windows Server.

• Oversee device provisioning and policy enforcement, ensuring compliance with security best practices.

• Ensure endpoint security by enforcing hardening, patching, and compliance policies, integrating solutions with security tools like Okta IAM, CrowdStrike, and MDM platforms.

• Monitor, troubleshoot, and resolve endpoint provisioning, performance, and security issues.

• Automate endpoint deployment and application lifecycle management via MDM and scripting (PowerShell, Python, and related tools).

• Support VPN, Wi-Fi authentication, and certificate-based authentication for mobile devices.

• Document SOPs, policies, and endpoint configurations.

• Provide guidance to tier II resources for advanced troubleshooting.

• Stay current with industry trends and emerging endpoint security threats.

• Administer Windows servers, including patching and security hardening.

• Manage Microsoft Active Directory (AD) and Entra AD, including GPOs, and security controls such as auditing and role-based access.

Qualifications:

• 4+ years of experience in endpoint management, IT infrastructure, or a related field.

• Proficiency with Microsoft Intune, Active Directory, Jamf, or other MDM solutions.

• Experience with Okta IAM, Entra/Azure AD solutions.

• Strong knowledge of Windows and macOS administration, including Group Policy, security baselines, and automation.

• Scripting and automation experience with PowerShell, Bash, or Python.

• Understanding of endpoint security principles, including vulnerability management and endpoint detection and response (EDR) tools.

• Strong troubleshooting skills in hardware, software, and network-related endpoint issues.

• Familiarity with Zero Trust security frameworks and principles.

• Experience with Windows Server administration, including patch management, backup solutions, and security hardening.

• Knowledge of Active Directory and Group Policy management.
  

Preferred Skills:

• Experience with CrowdStrike, Carbon Black, Sentinal One, or similar security tools.

• Knowledge of Microsoft Autopilot and Apple DEP for automated device provisioning.

• Understanding of ITIL processes and enterprise IT operations.

• Experience with configuration management tools such as Ansible, Puppet, or Chef.

• Relevant certifications such as Microsoft Certified: Endpoint Administrator, Kandji 200+, or CISSP.

• Experience with cloud infrastructure including AWS and Microsoft Azure