Lead Infrastructure Engineer

Why AIS?

When you join AIS, you’re joining a mission-driven team that’s passionate about making a difference. You’ll work on projects that matter, alongside industry-leading experts, in an environment that fosters innovation, driving client success, and empowering our team to make a lasting impact. As an employee-owned company, we value collaboration, inclusivity, continuous growth, and shared success.

• Employee Ownership: Your contributions directly impact the company’s success, and you share in its achievements.
• Continuous Learning: Access to resources, training, and mentorship to support your professional growth.
• Inclusive Culture: A workplace where diversity is celebrated, and everyone’s voice is valued.
• Mission-Driven Work: Engage in projects that make a meaningful difference for our clients and communities.

Working@AIS

At AIS, we are dedicated to providing our employees with diverse opportunities to grow their careers while supporting a variety of impactful projects. For this position, we are seeking a talented individual to join AIS as a Lead Infrastructure Engineer.

• Core Knowledge & Skills: Aligns infrastructure strategy to business goals, leads large projects, applies compliance frameworks, designs high availability/disaster recovery and performance optimization patterns, and shapes deployment pipeline design.
• Work & Complexity: Directs cross-team programs, performs advanced tuning, implements high availability/failover architectures, leads audits, plans growth, and manages budgets.
• Quality & Independence: Delivers high-quality outcomes, sets team standards, introduces innovative solutions, and makes high-impact decisions.
• Teamwork & Communication: Leads the engineering team, develops talent, resolves conflicts, and communicates effectively with senior leadership and stakeholders.
• Consulting & Engagement: Provides high-level consulting to leadership, builds roadmaps, negotiates vendor contracts, and sponsors innovation initiatives.

As your initial project assignment, you will support the unique needs of our client as a Senior Intune Engineer.

Project Summary

AIS is seeking a Senior Intune Engineer to lead the design, implementation, and operational maturity of Microsoft Intune and modern endpoint management services across the enterprise for a federal customer. This role is responsible for architecting and administering Intune-based device management for Windows endpoints and mobile devices, driving secure and scalable endpoint configuration, and supporting modernization initiatives including Autopilot, compliance, application lifecycle management, and co-management strategies.

Key Responsibilities

• Lead the design, deployment, and optimization of Microsoft Intune for enterprise endpoint management.
• Engineer and maintain device enrollment strategies for Windows, iOS, Android, and macOS where applicable.
• Design and support Windows Autopilot provisioning, device lifecycle workflows, and zero-touch deployment models.
• Build and manage configuration profiles, compliance policies, conditional access integrations, and endpoint security baselines.
• Package, deploy, and troubleshoot enterprise applications using Intune, including Win32 apps, Microsoft 365 Apps, and line-of-business applications.
• Administer and optimize Windows Update for Business policies, feature updates, quality updates, and driver/firmware deployment strategies.
• Support and enhance co-management scenarios with Configuration Manager where hybrid management is required.
• Partner with security teams to implement endpoint protection controls aligned with Microsoft Defender, Conditional Access, and Zero Trust principles.
• Develop automation and reporting solutions using PowerShell, Microsoft Graph, and other scripting or API-based methods.

Required For This Opportunity

• 7+ years of experience in endpoint engineering, modern device management, or enterprise client platform administration.
• 4+ years of deep hands-on experience with Microsoft Intune in a large enterprise environment.
• Strong experience with Windows endpoint management, including policy design, software deployment, compliance enforcement, and troubleshooting.
• Hands-on expertise with Windows Autopilot, Azure AD/Entra ID join, hybrid join, and device enrollment methods.
• Strong knowledge of Microsoft Entra ID, Conditional Access, device compliance, and identity-driven access controls.
• Experience with PowerShell scripting for automation, reporting, and remediation.
• Experience with application packaging and deployment, especially Win32 packaging and enterprise app troubleshooting.
• Strong understanding of endpoint security controls, device hardening, and Microsoft security integration points.
• Experience supporting or migrating from traditional management platforms such as MECM/SCCM.

Nice To Have Skills

• Experience in highly regulated environments such as government, defense, healthcare, or financial services.
• Experience with Microsoft Defender for Endpoint, Defender Vulnerability Management, and security baseline implementation.
• Familiarity with GCC High, Azure Government, or other restricted cloud environments.
• Experience with Apple Business Manager, Android Enterprise, and mobile application management.
• Knowledge of ServiceNow or similar ITSM platforms for incident, change, and problem management.
• Microsoft 365 Certified: Endpoint Administrator Associate Certification
• Microsoft Certified: Enterprise Administrator Expert Certification
• Azure or Security certifications relevant to endpoint and identity engineering

Compensation

At AIS, we are committed to offering competitive and fair compensation that reflects the skills, experience, and contributions of each team member. The targeted base salary range for this role is $121,000-$182,000 per year. Please note that this range is provided as a guideline and the final offer will be based on several factors, including but not limited to, skillset and competencies, level of experience, education, certifications, and location. We value transparency in our hiring process and are happy to discuss how your unique qualifications align with our compensation structure during the interview process.

Applied Information Sciences does not discriminate on the basis of race, national origin, religion, color, gender, sexual orientation, age, disability, protected veteran status, or any other basis. Employment decisions are based solely on qualifications, merit, and business needs.