IT Systems and Endpoint Engineer

The IT Systems & Endpoint Engineer is a highly technical, hands-on role responsible for the implementation, administration, security, and lifecycle management of the organization’s server, endpoint, and core IT systems and services. This position provides Tier 2 and Tier 3 technical support, resolving complex infrastructure and endpoint issues, performing root cause analysis, and supporting incident response and system recovery. The role also leads and supports the implementation, and continuous improvement of systems, platforms, and IT services, ensuring solutions are deployed securely, efficiently, and in alignment with organizational standards and security policies.

Essential Duties And Responsibilities

Systems & Server Administration

• Administer and support Windows Server environments (Linux experience preferred).
• Perform advanced troubleshooting, patch management, monitoring, and performance optimization.
• Support on-premises and hybrid infrastructure environments, including virtualized systems.
• Maintain system reliability through proactive monitoring, maintenance, and capacity planning.
  

Active Directory & Identity Management

• Administer Active Directory including users, groups, computers, and Group Policy.
• Support hybrid identity environments integrated with Microsoft Entra ID.
• Troubleshoot authentication, identity, and access issues including Conditional Access policies.
• Maintain and improve identity security practices including least privilege access and policy enforcement.
  

Endpoint Engineering & Device Management

• Administer Windows and macOS endpoints using Intune (MDM/MAM), Group Policy, and RMM tools.
• Design, implement, and maintain endpoint configuration baselines, security policies, and application deployments.
• Develop and maintain standardized endpoint builds and configuration management practices.
• Provide Tier 2 and Tier 3 escalation support for endpoint-related issues.
  

Virtualization & Infrastructure

• Support VMware virtualization environments including configuration, monitoring, and troubleshooting.
• Assist with infrastructure capacity planning and performance analysis.
• Participate in infrastructure lifecycle planning including upgrades and platform improvements.
  

Backup & Recovery

• Administer and maintain backup and recovery platforms.
• Conduct recovery testing and support system restoration during incidents or outages.
• Assist in maintaining disaster recovery readiness and documentation.
  

Systems & Service Implementation

• Implement and support infrastructure, endpoint, and security services to maintain overall system health and security.
• Assist with technology deployments, platform enhancements, and remediation initiatives to improve reliability, resilience, and compliance.
• Ensure implemented solutions are operationally ready, secure, documented, and supportable.
  

Security & Compliance

• Harden systems and endpoints in accordance with corporate security standards.
• Perform patch management, vulnerability remediation, and enforce device encryption policies.
• Support incident response activities including containment, remediation, and recovery.
• Collaborate with security teams to improve system and endpoint security posture.
  

Microsoft 365 & Core Services

• Provide Tier 2 and Tier 3 support for Exchange Online, SharePoint Online, and Microsoft Teams.
• Support access management, permissions, and service-level troubleshooting.
• Assist with Microsoft 365 platform configuration and service optimization.
  

Support Responsibilities

• Act as a Tier 2 and Tier 3 escalation point for Service Desk issues.
• Perform root cause analysis and contribute to long-term problem resolution.
• Document system configurations, processes, and operational procedures.
  
  

Supervisory Responsibilities

• This position will not be supervising any other employees at this time. However, the position does require the Individual to be personable and team-oriented.
  
  

Education/Experience Required

• Bachelor's degree in information technology, computer science, or equivalent professional experience.
• Minimum of 5 years of experience in systems administration and endpoint management.
• Experience supporting enterprise infrastructure and endpoint environments.
  
  

Preferred Qualifications

• Experience supporting hybrid cloud environments integrating on-premises infrastructure with Amazon Web Services.
• Experience implementing or supporting Zero Trust security models, including Conditional Access and device compliance policies.
• Experience with endpoint security platforms (EDR/XDR).
• Experience automating administrative tasks using PowerShell or other scripting tools.
• Familiarity with enterprise monitoring, logging, and alerting platforms.
• Experience with enterprise backup platforms such as Rubrik.
• Experience supporting disaster recovery and business continuity planning.
• Familiarity with ITIL-based service management environments.
  
  

Computer Skills Necessary

• Ability to learn new technologies and applications
• Ability to Troubleshoot and Research problems through to conclusion
• Windows Server administration and implementation
• Active Directory and Group Policy
• Microsoft Entra ID (Azure AD)
• Microsoft Intune (MDM/MAM)
• Windows and macOS endpoint management
• RMM tools (NinjaOne)
• VMware virtualization
• Backup and recovery platforms (Rubrik)
• Patch management and vulnerability remediation
• PowerShell scripting and automation
• Microsoft 365 services
• Amazon Web Services / Microsoft Azure
  
  

Physical Demands/Requirements

• The employee must occasionally lift and move up to 50 pounds. Assistance will be provided for weights greater than 50 pounds.
  
  

Work Environment

• Standard Office environment with moderate noise level. Occasional visits to warehouse areas and remote offices are necessary to provide support to all users within the company. There is a reasonable level of expectation for travel at least 20% of the time between the Mahwah and South Hackensack offices.
  
  

Travel

• Occasional visits to warehouse areas and remote offices are necessary to provide support to all users within the company. There is a reasonable level of expectation for travel at least 20% of the time.
• The wage range for this role considers various factors in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has been adjusted for the applicable geographic location at which the position may be filled. At HYTORC, we offer Medical (3 plans), Dental, Vision, 401k (50% match up to 8% of salary), Vacation (vacation, sick time, floating holidays, personal days, birthday), HRA, FSA, STD, LTD, Life Insurance (company provides complimentary $25K of basic life insurance), Supplemental Plans (Accident, Critical Illness) Pet Insurance. For an individual to be hired at or near the top of the range for their role and compensation, decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $110,000 to $130,000.
  
  

#ZR