Project Manager - Endpoint & Identity Transformation

Title: Project Manager - Endpoint & Identity Transformation
Location: Newark, NJ (Hybrid Must be willing to go onsite 4 days a week)

We are looking for a Sr.IT Project Manager with experience in Endpoint & Identity Transformation. The ideal candidate should be able to communicate with leadership; the project has high visibility with CXOs.

Key Responsibilities:
Modernize endpoint, identity, and network access by moving Win 11 to Intune-based device management
Replace legacy/GPO style access dependencies and IP/VPN checks with Intune and Conditional Access policies driven by identity risk and device compliance (e.g., health, encryption, OS version).
Route M365 traffic directly to Microsoft from endpoints (AnyConnect route updates + ~40 site WAN firewall changes).
Own end-to-end delivery of the Windows 11 and Intune modernization program, including scope, schedule, budget, risks, and dependencies.
Develop and maintain detailed project plans, milestones, RAID logs, and status reports.
Drive cross-functional alignment between Endpoint, Identity & Access Management (IAM), Network, Security, and End User Computing teams.
Lead governance forums, steering committees, and executive status updates.
Manage migration of Windows 11 devices to Microsoft Intune-based device management.
Coordinate retirement or replacement of legacy Group Policy Objects (GPOs) with Intune configuration profiles and endpoint security policies.
Oversee implementation of device compliance policies (encryption, OS version, health state, Defender posture).
Ensure alignment with Zero Trust principles and modern endpoint management standards.
Lead transition from IP/VPN-based access controls to identity-driven Conditional Access.
Coordinate deployment of Conditional Access policies
Ensure seamless integration with Entra ID (Azure AD), Intune, and Microsoft Defender.
Partner with Security teams to validate policy effectiveness and user impact.
Manage changes to route Microsoft 365 traffic directly to Microsoft from endpoints.
Coordinate AnyConnect route updates and Firewall and WAN rule changes
Ensure minimal disruption to end-user productivity during network transitions.
Align routing updates with Microsoft recommended M365 connectivity principles.
Identify and mitigate technical, operational, and user-experience risks.
Oversee testing efforts; Coordinate UAT, pilot phases, and phased rollouts.

Requirements:
8+ years of IT project management experience
Proven delivery of enterprise-scale infrastructure or workplace transformation projects
Good understanding of Windows 11 deployment and lifecycle concepts; Microsoft Intune / Endpoint Management fundamentals; Conditional Access and identity-based security; VPN, firewall, and enterprise networking concepts; and Microsoft 365 connectivity and traffic optimization,
Strong experience managing cross-functional technical teams
Expertise in Agile, Waterfall, or hybrid delivery models
Knowledge of - Microsoft Intune / Endpoint Manager, Entra ID (Azure AD) & Conditional Access, Microsoft Defender, Cisco AnyConnect, Enterprise WAN & firewall platforms, M365 ecosystem is a plus
Skilled at generating full project plans
Drive team delivery, including coordinating workstreams to manage project interdependencies
Prepare clear, concise, and informative project reports/presentations for program/project meetings
Use Microsoft Project and SharePoint to manage, monitor, and track project milestones and risk deliverables
Knowledge and experience in end-to-end project delivery, either traditional Software Development Lifecyle (SDLC) or agile delivery methodologies (or hybrid approaches)
Provide status reporting regarding project milestones, deliverable, dependencies, risks and issues, communicating across leadership
Must be very proficient in Microsoft Office tools (Word, Excel, PowerPoint, Power BI, etc.)
PMP Certification is preferred.