Intune Architect
- Indianapolis, IN
- Permanent
- Full-time
For interested applicants, click the apply button or you may reach out to Alfher Hidalgo at (248) 728-2627/Alfher.Hidalgo@stefanini.com for faster processing. Thank you!Position Overview:
We are seeking an experienced and proactive Intune Architect to lead our organization in the transition to a modern endpoint management approach utilizing Microsoft Intune and System Center Configuration Manager (SCCM). The ideal candidate will possess a deep understanding of endpoint management technologies, co-management strategies, and application packaging. The Intune Architect will play a pivotal role in assessing our current infrastructure, guiding upgrades, and establishing a comprehensive migration strategy to ensure seamless integration and management of devices across the organization.Key Responsibilities:Discovery & Current State Assessment:
- Conduct a thorough inventory and assessment of the existing SCCM infrastructure, including versions, roles, and usage.
- Review and evaluate co-management status and current capabilities, including patching, app deployment, and OS deployment.
- Perform readiness checks for SCCM upgrades, ensuring site health, backups, and replication are in place.
- Inventory the existing SCCM app portfolio and identify apps for repackaging for Intune.
- Oversee the upgrade process, ensuring support for co-management and cloud integration features.
- Validate site health, backups, boundary groups, and client versions post-upgrade.
- Link SCCM to Intune via Microsoft Endpoint Manager admin center.
- Gradually shift workloads, including compliance, Windows Updates, and app installations.
- Pilot co-managed devices, focusing on hybrid-joined Windows endpoints.
- Configure Autopilot profiles, Enrollment Status Page (ESP), and enrollment settings.
- Test deployments on a sample set of modern devices to validate Azure AD join, app provisioning, and conditional access.
- Enroll pilot iPadOS devices and push configuration profiles and required applications.
- Confirm integration with Microsoft 365 apps, Microsoft Defender, and Data Loss Prevention (DLP) controls.
- Define packaging standards, including silent installation, detection rules, and uninstallation processes.
- Establish a packaging and testing process to ensure application compatibility.
- Scope the migration path by endpoint type (Workstations, Servers, Engineering Test Devices).
- Build a detailed roadmap, define roles and responsibilities (RACI), and identify necessary resources.
- Develop a phased migration plan for the workstation fleet using Autopilot and Intune.
- Plan special handling for Engineering Test Devices and evaluate the retention of SCCM or transition to Azure ARC for servers.
- Bachelor's degree in Computer Science, Information Technology, or a related field. Master's degree preferred.
- Minimum of 5 years of experience in IT infrastructure, endpoint management, or systems administration.
- Proven experience with Microsoft Intune and SCCM (MECM) in large-scale enterprise environments.
- Strong understanding of Azure Active Directory, Autopilot, and mobile device management (MDM).
- Expertise in application packaging and deployment methodologies.
- Familiarity with PowerShell scripting for automation of management tasks.
- Knowledge of security compliance standards and best practices in endpoint management.
- Microsoft Certified: Security, Compliance, and Identity Fundamentals or higher.
- Microsoft Certified: Modern Desktop Administrator Associate is a plus.
- Strong analytical and problem-solving skills with attention to detail.
- Excellent communication and collaboration skills to work effectively with cross-functional teams.
- Ability to manage multiple projects simultaneously and meet deadlines.