Qualifications & Experience :
- 7–12 years of experience in Desktop Engineering/EUC, with demonstrated Level 3 responsibilities across Windows and macOS environments, including automation and application packaging.
- Possession of ITIL Foundation certification (or higher), with hands-on experience in Problem and Change management and Post-Incident Reviews (PIRs).
- Proven expertise in Intune (Windows/macOS), Autopilot/ADE, LAPS, WDAC/AppLocker, security baselines, and update orchestration.
- Experience working in 24/7 operational environments and on-call rotations, with job location limited to Chennai and Bangalore.
- Strong skills in documentation, knowledge base writing, SOP/runbook maintenance, and an understanding of asset lifecycle management (HAM).
Must-Have Skills:
- Mastery of Intune for multi-platform environments, including policy architecture, RBAC, scope tags, dynamic groups/filters, and health reporting for both Windows and macOS.
- Experience designing scalable provisioning solutions, such as Windows Autopilot/Device Preparation and Apple ADE, optimizing ESP/OOBE, managing secure/bootstrap tokens, and ensuring robust reset and repurpose workflows.
- Expertise in establishing secure administrative practices by implementing Windows LAPS via Intune, with RBAC-controlled retrieval and rotation, consistent with least-privilege principles and audit trails.
- Ability to lead application governance using WDAC/App Control (managed installer) and AppLocker, piloting in audit mode, transitioning to enforcement, and managing exceptions.
- Competence in orchestrating patch management strategies, including comprehensive Windows update rings (feature, quality, driver, expedite) and macOS DDM deadlines, maintaining compliance dashboards and rollback procedures.