Lognormal Analytics - Senior Digital Workplace Engineer - Intune Administration

Role

• Build a deep understanding of internal stakeholder needs and translate them into effective solutions.
• Lead technical standards within the Digital Workplace in alignment with security and architecture frameworks.
• Contribute to roadmap and architecture design for internal tooling across the full digital workplace lifecycle.
• Identify solutions to technical problems, balancing effort and impact across stakeholders.
• Collaborate with technical, finance, and procurement teams for build vs. buy recommendations.
• Design and manage the integration of applications into the digital workplace experience.
• Deliver and continuously improve a secure, scalable, and modern device management system.
• Provide technical mentorship and foster collaborative problem-solving within the team.
  

Core Technical Expertise

Advanced Intune & Endpoint Management :

• Lead the administration, configuration, and optimization of Microsoft Intune.
• Develop and manage device enrollment, configuration profiles, compliance, and security baselines across Windows, macOS, iOS, and Android.
• Monitor health, compliance, and security posture of endpoints.
• Integrate Intune with Microsoft 365 and Azure services.
  

Intune Automation & Scripting

• Use Microsoft Graph API and PowerShell to automate tasks, deploy policies, and generate reports.
• Build custom workflows to enhance endpoint management efficiency.
  

Azure Ecosystem Integration

• Strong understanding of Microsoft Entra ID (Azure AD) and its integration with Intune.
• Implement Conditional Access, dynamic groups, and identity protection in endpoint security policies.
  

Advanced Intune Features

• Expertise in Windows Autopilot, Apple ADE (ABM/ASM), Android Enterprise, and Application Protection Policies (MAM).
• Manage application deployments (Win32 LOB, Store) and integrate with Microsoft Defender for Device Lifecycle Management :
• Design and manage BYOD strategies with Intune MDM and MAM controls.
• Oversee OS updates and patching across platforms.
  

Enterprise Browser Management

• Configure security-focused browser policies via Intune for Edge, Firefox, etc., including DLP settings.
  

Cloud Identity & Access Management

• Scale identity and access management using Entra ID with Intune.
• Configure SSO (SAML/OIDC) and SCIM provisioning for application & Compliance :
• Apply Zero Trust principles and compliance frameworks (ISO 27001 SOC 2 Cyber Essentials) to endpoint management.
• Conduct security assessments and contribute to risk remediation efforts.
  

Architecture & Design

• Design secure, scalable endpoint management solutions integrated with IDPs (Okta, Entra ID).
• Translate business requirements into effective technical solutions.
  

Desirable Additional Experience

• Identity and Access Management (IAM) & Privileged Access Management (PAM) platforms, preferably Okta.
• Application allowlisting (App Control, WDAC, AppLocker).
• Workflow and process automation.
• Issue & Project tracking tools :
• 5+ years in MDM & Endpoint Management, including 5+ years as Intune Administrator.
• Proven expertise in Intune administration, policy configuration, and troubleshooting.
• Experience managing Windows, macOS, Android, and iOS endpoints in enterprise environments.
• Strong PowerShell scripting and Microsoft Graph API skills.
• Certification in MDM administration (Intune, Jamf).
• Experience with MDM migration (e. g., Workspace ONE, Jamf, SCCM).
• Strong communication, collaboration, and mentoring skills.