Azure/Entra System Administrator

Summary: We are seeking a highly skilled Intune, AutoPilot, and Entra System Administrator to join our team. In this role, you will be responsible for managing, deploying, and maintaining endpoint and identity management solutions for a variety of clients using Microsoft Intune, AutoPilot, and Microsoft Entra (formerly Azure AD). You will work closely with internal teams and clients to ensure seamless device management, identity governance, and compliance with security standards.

DUTIES & RESPONSIBILITIES

• Intune Device Management: Administer and manage Microsoft Intune for multiple clients, ensuring secure and compliant endpoint management, including mobile device management (MDM) and mobile application management (MAM) policies.
  
• AutoPilot Configuration & Deployment: Set up and maintain AutoPilot profiles for client devices, automating and streamlining device provisioning and configuration for clients' remote or on-site employees.
  
• Microsoft Entra (Azure AD) Management: Manage Microsoft Entra (Azure Active Directory) for multiple clients, ensuring secure identity management, user provisioning, access management, and Single Sign-On (SSO) integration.
  
• Security & Compliance: Develop and enforce security policies for client environments, including multi-factor authentication (MFA), conditional access, and role-based access control (RBAC) to ensure client compliance with security standards.
  
• Application Deployment: Configure and deploy applications using Intune across client environments, ensuring that end-users have seamless access to the software they need while maintaining compliance.
  
• Client Support & Troubleshooting: Provide technical support to clients, troubleshooting and resolving issues related to endpoint management, device configuration, identity access, and security controls.
• Automation & Scripting: Use automation tools such as PowerShell and Azure Automation to streamline tasks like user provisioning, device management, and reporting across client environments.
• Monitoring & Reporting: Implement monitoring solutions for client environments to proactively identify and resolve issues, ensuring optimal performance. Provide clients with regular reports on system health, security, and compliance.
  
• Documentation & Best Practices: Maintain accurate documentation of client configurations, policies, and environments. Provide recommendations and best practices to clients to optimize their Microsoft services.
  
• Collaboration: Work closely with internal technical teams and client stakeholders to ensure smooth service delivery and integration of Microsoft solutions with existing infrastructure.
  

QUALIFICATIONS

• Proven experience: System Administrator managing Microsoft Intune, AutoPilot, and Microsoft Entra (Azure AD), ideally in an MSP environment.
  
• Endpoint management expertise: Strong understanding of Intune MDM and MAM policies, software deployment, and device compliance.
  
• AutoPilot experience: Proven experience with AutoPilot to automate device setup and deployment at scale for remote or on-site users.
  
• Microsoft Entra (Azure AD) knowledge: Expert knowledge of identity and access management, including conditional access policies, MFA, SSO, and RBAC.
  
• Scripting proficiency: Proficiency in PowerShell and other scripting tools to automate and manage client environments.
  
• Security-focused mindset: Solid understanding of compliance requirements, encryption, MFA, and zero-trust security models.
  
• Strong troubleshooting skills: Ability to resolve client issues quickly and efficiently.
  
• Excellent communication skills: Ability to interact with clients, understand their needs, and provide technical solutions and guidance.

PREFERRED SKILLS

• Certifications: Microsoft certifications such as MD-101 (Managing Modern Desktops), MS-500 (Security, Compliance, and Identity Fundamentals), or AZ-104 (Azure Administrator).
  
• Working with multiple client environments in a Managed Service Provider (MSP) context.
  
• Microsoft Endpoint Manager, Windows 365, and other related Microsoft services.
  
• Hybrid identity environments that integrate on-premises Active Directory and Azure AD.