Intune SCCM Endpoint Engineer

What's On Offer:
1 Year Contract (Yearly Renewable)
Based in Singapore

Intune SCCM Endpoint Engineer

We are seeking a highly skilled Intune / SCCM Endpoint Engineer to manage, support, and optimize enterprise endpoint environments across Windows, macOS, and mobile platforms. The ideal candidate will possess strong hands-on expertise in Microsoft Intune, SCCM/MECM, Windows Autopilot, Active Directory, and endpoint security technologies.

This role is responsible for endpoint lifecycle management, device provisioning, patch compliance, software deployment, automation, and ensuring secure and compliant endpoint operations within enterprise environments.

The candidate should have strong troubleshooting capabilities, automation experience using PowerShell, and experience supporting hybrid on-premises and cloud-managed endpoint ecosystems.

Key Responsibilities

Endpoint Management & Deployment

• Manage and administer enterprise endpoint environments using Microsoft Intune and Microsoft Configuration Manager (MECM / SCCM).
• Design, configure, and maintain Windows endpoint deployment solutions using SCCM/MECM, MDT, and Windows Autopilot.
• Support zero-touch deployment and modern device provisioning initiatives.
• Perform operating system imaging, application packaging, software deployment, and endpoint configuration management.
• Manage device enrollment and lifecycle processes for Windows, macOS, iOS, and Android devices.

Endpoint Security & Compliance

• Implement and manage endpoint security policies, compliance baselines, BitLocker encryption, and Conditional Access policies.
• Maintain patch compliance and vulnerability remediation using Intune, SCCM, WSUS, and Microsoft Defender technologies.
• Work closely with cybersecurity and infrastructure teams to remediate vulnerabilities and enforce endpoint hardening standards.
• Support endpoint protection platforms and ensure compliance with enterprise security frameworks.

Microsoft 365 & Identity Management

• Administer Microsoft 365 and Entra ID (Azure AD) endpoint-related configurations.
• Manage Group Policy Objects (GPOs), user/device provisioning, and identity-based access controls.
• Support hybrid identity and device compliance initiatives.

Automation & Scripting

• Develop and maintain PowerShell automation scripts for device provisioning, application deployment, compliance reporting, patch validation, endpoint remediation and inventory management
• Automate operational and administrative processes to improve efficiency and reduce manual effort.

Monitoring & Troubleshooting

• Provide Level 2/Level 3 support for endpoint-related incidents and escalations.
• Troubleshoot endpoint deployment failures, patching issues, policy conflicts, and application compatibility problems.
• Monitor endpoint health, compliance status, deployment success rates, and operational performance.
• Collaborate with vendors and internal teams to resolve infrastructure and endpoint issues.

Project & Operational Support

• Participate in enterprise endpoint transformation and migration projects.
• Support Windows 10/11 migrations and modern workplace initiatives.
• Maintain technical documentation, SOPs, and operational knowledge articles.
• Ensure adherence to ITIL processes including incident, change, and problem management.

Required Skills & Experience

Technical Skills

Endpoint Management

• Strong hands-on experience with Microsoft Intune SCCM/MECM, Windows Autopilot, Microsoft Defender for Endpoint Group Policy (GPO), Active Directory / Entra ID

Operating Systems

• Windows 10/11
• Windows Server 2016/2019/2022
• macOS device management experience preferred

Scripting & Automation

• Strong PowerShell scripting experience
• Experience automating endpoint administrative tasks

Security & Compliance

• Endpoint compliance management
• BitLocker administration
• Vulnerability remediation
• Conditional Access policies

Infrastructure & Cloud

• Microsoft 365 administration
• Azure / Entra ID exposure
• WSUS and patch management
• VMware / Hyper-V knowledge preferred

Preferred Qualifications

• Microsoft certifications related to Intune, Endpoint Manager, Azure, or SCCM
• ITIL certification
• Experience supporting enterprise environments (banking, healthcare, government, insurance, etc.)
• Experience with JAMF, Kandji, or Apple device management is an advantage

Experience Requirements

• 5–10 years of experience in endpoint engineering, infrastructure support, or EUC environments
• Proven experience managing enterprise endpoint solutions at scale
• Experience supporting hybrid on-premises and cloud-managed endpoint environments