Senior Endpoint Management Engineer (MECM/SCCM & MDT)-W2 Only

Job Title: Senior Endpoint Management Engineer (MECM/SCCM & MDT)-W2 Only

Remote
Duration: One Year Contract with possibility of extensions

Job Summary

IRG Clients is seeking a highly skilled and self-motivated Senior Endpoint Management Engineer to support and enhance the agency's enterprise endpoint infrastructure. This role is responsible for the design, deployment, administration, security, monitoring, and ongoing support of Microsoft Endpoint Configuration Manager (MECM/SCCM), MDT, and related technologies. The ideal candidate will ensure reliable operating system deployment, software distribution, patching, compliance, and security in alignment with CJIS, state security standards, and agency policies.

Key Responsibilities

• Administer, design, deploy, secure, monitor, and maintain enterprise MECM/SCCM and MDT environments under limited supervision.
• Manage OS imaging, deployment, refresh, and patching using industry best practices.
• Implement and maintain Software Update Points (SUP), WSUS, and SQL Server integrations.
• Configure application packaging and deployment for endpoint devices.
• Analyze software versioning and lead implementation of business and technical requirements.
• Monitor system performance, event logs, and security posture; perform routine security hardening.
• Enhance endpoint compliance, reliability, and operational efficiency.
• Maintain SCCM hierarchy (CAS, Primary, Secondary), boundary groups, distribution points, and content strategies.
• Support Active Directory, Entra ID (Azure AD), M365, Intune co-management, and Defender for Endpoint.
• Apply change management, disaster recovery, business continuity, and incident response procedures.
• Identify risks and communicate proactively with the CIO and IT leadership.
• Develop and maintain technical documentation in accordance with CJIS, state, and agency security standards.
• Provide operational support, knowledge transfer, and technical guidance to IT staff and business users.

Required Skills & Experience :

• 5+ years of enterprise MECM/SCCM and MDT administration
• 5+ years of Windows OS, software, and image deployment & refresh experience
• Strong experience in multi-OS image development and implementation
• 5+ years of SUP, WSUS, and SQL Server integration and configuration
• Hands-on experience with Active Directory, Entra ID, M365, Intune (Co-Management), and Defender for Endpoint
• Advanced knowledge of DNS, DHCP, PXE, and related network protocols
• Expertise in hardware/software inventory, compliance, and security baselines
• Experience in high-availability environments and global deployment troubleshooting
• Strong documentation, organization, communication, and time management skills
• Ability to work independently, follow IT policies, and support enterprise security and compliance initiatives

Preferred skills

• Expert with Windows infrastructure, logging, and event handling
• Candidate must be able to demonstrate working knowledge of client settings, deployment strategies, and third-party software support
• Expert in compliance settings, baselines, and client health
• Expert with PowerShell, scripting, logon scripts, and logon optimizations
• Expert with automated deployments of OS, drivers, GPOs, task sequences, etc

Preferred Certifications :

• Microsoft Certified Professional (MCP)
• Microsoft Certified Systems Engineer (MCSE)
• Microsoft Azure Fundamentals
• Microsoft Azure Administrator
• CompTIA Network+