What are the responsibilities and job description for the Unified Endpoint Management (UEM) Engineer position at Global Enterprise Services, LLC?
******This is a NINE (9) Month Assignment; however, history has shown that these migrations may continue beyond that timeline***** GES is seeking an experienced Staff Unified Endpoint Management (UEM) Engineer to join our Defense Enclave Services (DES) team, who will support an extensive digital modernization program critical to Defense Information Systems Agency (DISA) and Department of Defense (DoD) Fourth Estate Agencies. The Staff UEM Engineer will be responsible for designing, implementing, and optimizing Microsoft Intune solutions, for migration from MECM and AD joined devices to Azure AD joined and Intune Managed. They will develop Intune policies, utilizing existing Active Directory group policies and work closely with cross-functional teams to architect and deliver robust, scalable, and secure solutions. Primary Responsibilities List daily duties and/or specific job responsibilities. Design and implement Microsoft Intune-based solutions that align with user needs, security requirements, and enterprise standardsPackage, deploy, and maintain applications using Intune, with a focus on automation, version control, and user experienceCreate and manage Intune policies for application deployment, device compliance, security configurations, and configuration profilesEnsure seamless integration with Microsoft 365 services, including Defender for Endpoint, Conditional Access, and AutopilotDesign and deploy Windows 10 and 11 provisioning workflows using Intune, Autopilot, ESP, and dynamic provisioning techniquesConfigure and manage Windows Update for Business (WUfB) policies to ensure timely and secure OS updatesMaintain and evolve standardized Windows 10 and 11 deployment images, leverage both cloud-native and traditional imaging strategies.Collaborate with infrastructure teams to transition Group Policy Objects (GPOs) to modern Intune equivalents (e.g., Settings Catalog, ADMX-backed policies)Work closely with the Active Directory and SCC teams to ensure SCCM readiness and alignment with broader infrastructure goalsImplement security best practices and compliance frameworks within Intune, including endpoint protection, encryption, and data loss preventionMonitor and respond to security incidents related to mobile devices and endpoints, integrating with SIEM and SOC workflowsContinuously evaluate and improve endpoint management processes, proposing innovative solutions and communicating effectively with leadershipDevelop and maintain comprehensive documentation for Intune configurations, provisioning processes, legacy GPO mappings, and SCCM coexistence strategiesRequired Qualifications: Bachelor’s degree and 8-12 years of prior relevant experience or Master’s degree with 6-10 years of prior relevant experienceActive DoD Secret clearanceExperience migrating users and desktops to Microsoft IntuneExperience packaging applications using Microsoft IntuneExperience writing and troubleshooting Power Shell scriptsExperience working directly with customer and other stakeholders to interpret requirements / feedback and report statusExcellent written and verbal communication skills, a demonstrated ability to meet deadlines, and a strong problem-solving mindsetFamiliarity with the Atlassian suite, including Jira and ConfluenceCurrent IAT Level II (or higher) Certification such as Security or CISSPDesired Qualifications: Relevant certifications, such as Microsoft Certified Intune Expert
Salary : $138,000 - $207,000