We are seeking a highly skilled and experienced Senior Desktop Systems Engineer (L3) to join our IT team. The ideal candidate will have a strong background in managing Windows and macOS infrastructure within an enterprise environment. This role requires a proactive professional with at least 8 years of experience who can provide advanced support, troubleshoot complex issues, and manage desktop infrastructure to ensure optimal performance and security across the organization.
Infrastructure Management:
Design, implement, and manage Windows and macOS desktop environments.
Manage on-premises Active Directory (AD) and Azure Active Directory (AAD) integrations, ensuring seamless identity and access management.
Ensure high availability, security, and performance of desktop systems.
Perform software distribution, patch management, and compliance monitoring.
Collaborate with various OEM vendors to ensure hardware compatibility and support for desktop systems.
Advanced Support and Troubleshooting:
Provide L3 support for Windows and macOS desktop environments, resolving escalated incidents and problems.
Conduct root cause analysis on recurring issues, recommending and implementing long-term solutions.
Collaborate with IT teams to resolve complex technical issues related to desktop systems and applications.
Workstation Imaging and Deployment:
Create, maintain, and deploy standardized workstation images for Windows and macOS using SCCM, Microsoft Autopilot, and other enterprise tools.
Collaborate with OEM vendors to ensure the latest drivers and updates are included in workstation images.
Develop and maintain processes for efficient provisioning, including hardware configuration and imaging, to streamline device setup for end-users.
Endpoint Security and Compliance:
Manage endpoint security solutions, including antivirus, encryption, and data loss prevention on Windows and macOS platforms.
Ensure compliance with organizational policies, especially related to software updates, patch management, and security standards.
Monitor and maintain compliance with the organization's standard patch compliance rate of 95% and above.
Cloud and Identity Management:
Administer Azure AD, ensuring proper role-based access control and compliance with security standards.
Support and manage Office 365 services, including user provisioning, license management, and troubleshooting of productivity tools.
Integrate and support on-premises AD with cloud-based services for a hybrid infrastructure.
Manage hardware refresh cycles, ensuring that all assets are up-to-date and compliant with enterprise standards.
Automation and Scripting:
Develop and maintain automation scripts for desktop deployment, software distribution, and patch management using PowerShell, Bash, or other scripting tools.
Automate repetitive tasks to enhance efficiency and reduce manual intervention in daily operations.
Software Deployment and Configuration Management:
Deploy, configure, and manage desktop software using tools like SCCM, JAMF, and other enterprise management platforms.
Monitor and troubleshoot software distribution issues, ensuring successful deployments across the enterprise.
Asset and Inventory Management:
Manage hardware refresh cycles, ensuring that all assets are up-to-date and compliant with enterprise standards.
Project Implementation:
Participate in desktop-related projects, including new deployments, upgrades, and migrations.
Collaborate with cross-functional teams to ensure successful project execution.
Documentation:
Maintain up-to-date documentation for desktop systems, processes, and procedures.
Create knowledge base articles to assist with troubleshooting and problem resolution.
Qualifications:
Bachelor's degree in Computer Science, Information Technology, or a related field. Equivalent work experience may be considered.
Minimum of 8 years of experience in desktop systems engineering, with a focus on enterprise Windows and macOS environments.
Expert knowledge of Windows and macOS operating systems, including deployment, configuration, and troubleshooting.
Strong experience with on-premises Active Directory, DNS, Azure Active Directory, and Office 365.
Proficiency with desktop management tools such as Microsoft SCCM, Intune, JAMF, or similar platforms.
Strong scripting skills with PowerShell, Bash, or similar for automation and process improvement.
Experience with endpoint security solutions and a strong understanding of cybersecurity best practices.
Excellent problem-solving skills and the ability to work independently or as part of a team.
Strong interpersonal and communication skills, with a customer-oriented mindset.
US Citizenship is Required for this role.
Preferred Qualifications:
Certifications in Microsoft (e.g., MCSE, MCSA), Apple Certified Support Professional (ACSP), or related technologies.
Familiarity with ITIL best practices and IT service management (ITSM) tools.
Experience with virtualization technologies, such as AWS, Azure, VMware or Hyper-V.