Senior Platform Engineer

About

Senior Platform Engineer on the Productivity and Collaboration team owning the end-to-end lifecycle of client endpoint platforms including Windows, macOS, mobile, and VDI. Drive endpoint reliability, security posture, and automation to scale operations and improve end-user productivity. Act as a technical leader, collaborating with Security, Networking, and Application teams while participating in on-call rotation.

Responsibilities

• Design, build, and maintain configurations for Windows, macOS, mobile, and virtual desktop endpoint platforms.
• Develop and maintain device configuration profiles, compliance policies, conditional access, and OS image deployment pipelines using Intune and MECM/SCCM.
• Deploy and manage VDI environments including image lifecycle, profile configuration, and operational tooling.
• Partner with Security to triage and remediate endpoint vulnerabilities and tune endpoint detection tooling.
• Write and maintain automation for provisioning, remediation, patching, and configuration drift using PowerShell, Python, or Bash and CI/CD pipelines.
• Maintain code in source control, apply code review practices, and document automation libraries and runbooks.
• Provide technical leadership, mentor team members, lead incident resolution, and collaborate on team vision and roadmaps.

Requirements

• 6+ years of experience with end-user computing technologies in complex organizations.
• Expert hands-on experience with MECM/SCCM and Microsoft Intune for device configuration, compliance, and app deployment.
• Experience managing macOS, mobile device management (iOS/Android), and VDI platforms (e.g., Azure Virtual Desktop).
• Strong scripting and automation skills (PowerShell required; Python or Bash a plus) and experience with GitHub/source control.
• Deep knowledge of Azure AD, Active Directory, GPO, and related identity/infrastructure technologies.
• Familiarity with monitoring/observability tools and integrating endpoint telemetry into monitoring platforms.
• Ability to lead cross-functional troubleshooting, implement security hardening (CIS, zero-trust), and participate in on-call support.