Software Engineer III

Job Title: Senior Windows Engineer (Endpoint Management & Modern Workplace)

Job Location: Durham, NC

Overview
We are seeking an experienced Senior Windows Engineer to join our team and support a large-scale, enterprise environment of approximately 20,000 Windows endpoints. This role is critical in maintaining, modernizing, and optimizing our Microsoft-based infrastructure, with a strong focus on endpoint management, automation, and end-user experience.

Key Responsibilities

• Design, implement, and manage enterprise endpoint solutions using Microsoft Intune and related Microsoft Endpoint Manager technologies

• Administer and support a fleet of ~20,000 Windows devices across a distributed enterprise environment

• Lead Windows OS lifecycle management, including deployment, patching, upgrades, and security compliance

• Develop, maintain, and optimize advanced PowerShell scripts for automation, reporting, and operational efficiency

• Manage and enhance device configuration, compliance policies, and security baselines within the Microsoft ecosystem

• Monitor and improve endpoint performance and user experience using tools such as Nexthink

• Collaborate with security, networking, and infrastructure teams to ensure alignment with enterprise standards and policies

• Troubleshoot and resolve complex, escalated endpoint and OS-related issues

• Contribute to strategic initiatives such as Zero Trust, device hardening, and modern workplace transformation

• Document processes, standards, and architectural decisions

Required Qualifications

• 7+ years of experience in Windows engineering within large enterprise environments

• Strong expertise in Microsoft Intune (Endpoint Manager) and modern device management (MDM/MAM)

• Deep knowledge of Windows 10/11 administration, deployment, and troubleshooting

• Advanced PowerShell scripting skills, with a focus on automation and scalability

• Experience managing large device fleets (10,000+ endpoints preferred)

• Strong understanding of Microsoft 365, Azure AD (Entra ID), Group Policy, and hybrid identity environments

• Experience with endpoint monitoring and analytics tools (e.g., Nexthink or similar)

• Solid understanding of security best practices, compliance frameworks, and endpoint hardening

• Proven ability to operate independently and handle high-impact escalations

Preferred Qualifications

• Experience with Autopilot, Windows Update for Business, and application packaging/deployment

• Familiarity with co-management (ConfigMgr/SCCM and Intune) environments

• Knowledge of virtualization technologies (e.g., AVD, VDI)

• Experience working in globally distributed teams

• Relevant Microsoft certifications (e.g., Endpoint Administrator, Azure Administrator)

Key Competencies

• Strong problem-solving and analytical skills

• Ability to simplify complex technical challenges and communicate effectively to stakeholders

• Proactive mindset with a focus on automation and continuous improvement

• Leadership qualities and ability to mentor junior engineers

Why This Role Matters
This position replaces a long-tenured engineer and plays a vital role in maintaining operational stability while driving modernization. The ideal candidate will balance deep technical expertise with strategic thinking to ensure continuity, scalability, and innovation across our endpoint environment.