We are seeking a highly skilled Lead IT Systems Engineer - Endpoint & Automation with deep expertise in Microsoft Endpoint Management, hybrid infrastructure, and automation. This is a strategic, high-impact role supporting the configuration, deployment, and lifecycle management of Windows endpoints across a hybrid environment (Azure AD + on-prem AD). If you are a seasoned IT professional who thrives on optimizing enterprise IT environments and modernizing endpoint management, we want to hear from you.
This role is in office, with the ideal candidate located within the Pittsburgh metro area.
Key Responsibilities
- Design, configure, and manage Microsoft Intune and SCCM/MECM for Windows and mobile device deployment, compliance, and lifecycle management.
- Ensure co-management health and seamless integration between on-prem SCCM and Intune cloud environments.
- Automate recurring tasks and deployments using PowerShell and other scripting tools to reduce manual effort and improve system reliability.
- Support hybrid identity environments including Azure Active Directory, on-prem Active Directory, Group Policy, and conditional access policies.
- Collaborate with infrastructure and security teams to implement and enforce endpoint hardening, zero-trust principles, and device compliance standards.
- Lead Windows OS upgrades, patching schedules, and endpoint configuration standardization across distributed locations.
- Administer and monitor email security platforms including spam filtering, quarantine policies, and phishing protection tools.
- Conduct infrastructure audits and assist with remediation of non-compliant endpoints.
- Contribute to IT projects related to modern device management, cloud transformation, and infrastructure automation.
- Maintain technical documentation and support knowledge base; create onboarding and training materials for technical staff.
Qualifications
- 5+ years of experience in enterprise IT, with a strong focus on endpoint management, automation, and infrastructure support.
- Proven hands-on experience administering Microsoft Intune (Endpoint Manager) and System Center Configuration Manager (SCCM/MECM) in production environments.
- Strong understanding of Azure AD, on-prem AD, hybrid join, and Group Policy management.
- Demonstrated experience in PowerShell scripting and automation of endpoint and system tasks.
- Solid working knowledge of Microsoft 365, Windows 10/11, MDM/MAM policies, and application deployment best practices.
- Familiarity with virtualization, remote access technologies, and enterprise security tooling (phishing prevention, spam filtering, conditional access).
- Excellent troubleshooting and problem-solving abilities with a systems-thinking mindset.
- Effective communication skills and the ability to interact with cross-functional technical teams.
- Experience supporting large, distributed IT environments is strongly preferred.
- Bachelor's degree in a related field or equivalent experience. Relevant certifications (e.g., Microsoft Certified: Endpoint Administrator, Azure Administrator) are a plus.
Maxim is an equal opportunity employer and does not discriminate against employees or applicants for employment based on their race, color, religion, creed, sex, national origin or ancestry, age, sexual orientation, disability, genetic information or veteran status, as those terms are defined under applicable laws, or any other characteristic protected by law.
