- Support System Center Configuration Manager (SCCM) and Intune
administration and engineering for highly complex environment, to include:
collection and query creation and management; application and package creation
and deployment; content distribution, management and troubleshooting, and
custom report creation.
- Expert knowledge of SCCM and Intune to include device enrollment, policy
management, application deployment, compliance enforcement, conditional
access, and device compliance.
- Manage SCCM/Intune hybrid environment. Migration of endpoints from SCCM to
Intune.
- Create, manage and maintain Intune policies and configuration based on
customer requirements such as drive mapping, Windows configuration profiles,
Data Loss Prevention(DLP) Policies, app protection policies, etc.
- Use SCCM and Intune software update groups to keep Windows workstations
and servers patched to correct levels.
- Identify, analyze, and resolve system problems with both short-term workarounds
and long-term solutions.
- Write PowerShell scripts to automate systems administration tasks.
- Respond to escalated service desk/team requests.
- Provide guidance and work leadership to less-experienced systems engineers.
- Communicate effectively (in oral and written form) with a variety of individuals;
work well within small and large team environments.
- Serves as liaison with clients, participating in meetings to ensure client needs are
met.
- Troubleshoot all kinds of incidents of Intune in a timely fashion.
- Create GPOs & administrative templates to deploy to the environment through
Intune & SCCM
- Create Endpoint Security policies such as Attack Surface Reduction & Account
Protection.
- MS365 & Entra(Azure)
- Recognize, exemplify and adhere to ICON's values which centers around our
commitment to People, Clients and Performance.
- Manage and administer the Microsoft 365 (M365) environment, including Exchange
Online, SharePoint Online, OneDrive for Business, Teams, Teams Rooms, and other
M365 applications.
- Manage and maintain M365 security policies and compliance requirements.
- Manage and maintain M365 backups and disaster recovery solutions.
- Monitor and maintain the performance of M365 systems, ensuring high availability and
reliability.
- This position is required to be part of the 24*7*365 Team On-Call rotation.
- Perform analysis of IT processes to identify deficiencies impacting IT efficiency and
effectiveness
- Collaborate with other IT Teams that manage ICON’s Active Directory (AD), Azure AD
and identity management services among others
- Collaborate with other IT Teams that manage ICON’s network infrastructure
- Collaborate with other IT Teams that manage ICON’s hardware and software
components
- Provide technical support for end-users, troubleshoot and resolve issues related to M365
services.
- Create and maintain documentation related to M365 services, policies, procedures, and
system configurations.
- Delivers high quality standards and strives for excellence; acts in a proactive, flexible and
responsive manner to customer needs.
- Strong understanding of networking and security principles, including firewalls, VPNs,
and network protocols.
- Participate in planning and implementation of IT projects related to M365 services.
- Keep up to date with new M365 features and capabilities and assess their potential
impact on the organization.
- Create custom scripts for customization & features not directly available in Azure and
Exchange Online admin center.
- Configure Exchange Hybrid configuration such as OU & features sync through Microsoft
Entra AD Connect
- Create Enterprise Applications including SSO through SAML 2.0 and customized
applications.
- Migrate on-prem storage solutions to Microsoft OneDrive through Migration Agent(s)
- Analyze problems through Windows Event logs and come up with respective solutions.
- Generate detailed customized reports through Microsoft Entra & Exchange Powershell
modules.
- Review configurations and present suggestions to improve user quality of life experience
with M365.
- Understand & identify problems with Microsoft hybrid AD joined devices.
3 to 5 years experienceRemote engineer, works remotely, with Iraq time zone (GMT+3) 8AM to 5PMVery good English as the customer is 70 % English speaker