Analysis Skills, Best Practices, CISSP - Certified Information Systems Security Professional, Cloud Computing, Communication Skills, Computer Science, Computer Security, Computer Workstations, Configuration Management, Continuous Improvement, Documentation Standards, Endpoint Security, Enterprise Endpoint, Environmental Management, Establish Priorities, External Audit, Failure Analysis, Functional Testing, HIPAA (Health Insurance Portability and Accountability Act), Health Information Technology, Healthcare, Healthcare Software, High Availability, Hybrid Cloud, IT Requirements, ITIL (IT Infrastructure Library), Identify Issues, Information Technology & Information Systems, Information Technology/Systems Audit, Infrastructure Software, Internal Audit, Internet Security, Linux Operating System, Maintain Compliance, Management of Information Systems/Technology (MIS), Microsoft Active Directory, Microsoft Product Family, Microsoft Windows Azure, Microsoft Windows Operating System, Microsoft Windows Server, Operating Systems, Operational Strategy, Operations Management, Regulatory Compliance, Regulatory Requirements, Reporting Dashboards, Reporting Skills, Risk, Root Cause Analysis, Sales Management, Scripting (Scripting Languages), Security Auditing, Security Patches, Server Support, Software Administration, Software Distribution, Software Patches, Standard Operating Procedures (SOP), Strategic Planning, System Center Configuration Manager (SCCM), Technical Leadership, Test Plan/Schedule, Windows PowerShell
Job Title: Senior Patching Engineer – SCCM, Intune & Endpoint Management
Duration: 6-Month Contract
Location: On-site (Authorized U.S. States – see below)
Compensation: $ 46 USD / hour
Position Summary
Important Healthcare organization is seeking an experienced and highly skilled Senior Patching Engineer to lead and support enterprise-wide patching, vulnerability remediation, and endpoint management initiatives across a large healthcare environment. This role is responsible for the administration, maintenance, and continuous improvement of Microsoft Configuration Manager (SCCM/MECM), Microsoft Intune, Windows and Linux Server patching, and endpoint management solutions supporting thousands of servers, workstations.
The ideal candidate will possess deep expertise in Microsoft Endpoint Management technologies, vulnerability remediation, operating system patching, compliance reporting, and healthcare IT operational requirements. This individual will work closely with Infrastructure, Security, and Compliance teams to ensure systems remain secure, compliant, and highly available while minimizing business disruption.
Key Responsibilities
Patch Management & Vulnerability Remediation
- Manage and maintain enterprise patching processes for Windows and Linux Servers, Windows workstations, and other supported platforms.
- Plan, test, schedule, deploy, and validate security updates, cumulative updates, hotfixes, and feature upgrades.
- Lead monthly patch cycles and emergency remediation activities for critical vulnerabilities.
- Partner with Cybersecurity teams to identify, prioritize, and mitigate vulnerabilities based on risk and compliance requirements.
- Develop patch deployment strategies that minimize downtime and maintain organizational service-level objectives.
- Monitor patch compliance and drive remediation efforts to achieve established compliance targets.
Work Requirements
- Candidates must currently reside and be authorized to work in one of the following states:
Alabama, Arkansas, Florida, Georgia, Illinois, Indiana, Iowa, Kentucky, Louisiana, Mississippi, Missouri, North Carolina, Ohio, Oklahoma, South Carolina, Tennessee, Texas, Wisconsin, St. Louis, Missouri or Kansas City, Missouri.
SCCM (Microsoft Endpoint Configuration Manager)
- Administer SCCM infrastructure including Software Update Points (SUP), Distribution Points, Boundary Groups, Collections, and Client Management.
- Create, maintain, and optimize patch deployment packages and automated deployment rules.
- Troubleshoot SCCM client health, software distribution, application deployments, and patching issues.
- Develop compliance reporting and dashboards for executive leadership, IT management, and auditors.
- Support operating system deployment (OSD) and endpoint lifecycle management initiatives.
Microsoft Intune & Endpoint Management
- Administer Microsoft Intune policies, update rings, Autopilot, endpoint compliance, and device management configurations.
- Manage co-managed environments integrating SCCM and Intune.
- Support endpoint configuration, enrollment, compliance monitoring, and policy enforcement.
- Collaborate with Security teams to implement Endpoint Security and Conditional Access strategies.
Server & Infrastructure Support
- Support patching and maintenance for Windows and Linux Server environments across on-premises and cloud platforms.
- Coordinate maintenance windows with infrastructure, application, and clinical teams.
- Validate application functionality following patch deployments.
- Perform root cause analysis for deployment failures and service-impacting issues.
- Ensure high availability and operational stability of endpoint management platforms.
Compliance, Audit & Healthcare Security
- Ensure systems comply with healthcare regulatory requirements including HIPAA, HITECH, and organizational security standards.
- Produce audit-ready reports demonstrating patch compliance and vulnerability remediation.
- Support internal and external audits related to system security and patch governance.
- Maintain documentation, standard operating procedures, and technical runbooks.
Automation & Continuous Improvement
- Develop PowerShell scripts and automation solutions for patching, reporting, and endpoint management activities.
- Identify opportunities to improve deployment efficiency, compliance, and operational effectiveness.
- Participate in architecture reviews and technology modernization initiatives.
- Recommend and implement best practices for endpoint security and lifecycle management.
Required Qualifications
- Bachelor's degree in Information Technology, Computer Science, Engineering, or related discipline, or equivalent work experience.
- 3+ years of experience supporting enterprise endpoint management environments.
- 3+ years of hands-on experience administering SCCM/MECM.
- 3+ years of experience administering Microsoft Intune.
- Experience managing patching operations for large-scale environments consisting of servers and endpoints.
- Strong knowledge of:
- Microsoft SCCM/MECM
- Microsoft Intune
- Windows Update for Business (WUfB)
- Windows Server platforms
- Active Directory
- Group Policy
- PowerShell scripting
- Microsoft Entra ID (Azure AD)
- Experience with vulnerability management platforms such as Tenable, Qualys, Rapid7, or Microsoft Defender Vulnerability Management.
- Strong troubleshooting and root-cause analysis skills.
- Excellent communication and stakeholder management abilities.
Preferred Qualifications
- Familiarity with Microsoft Defender for Endpoint.
- Experience supporting hybrid cloud environments including Azure.
- Experience with endpoint compliance reporting and audit preparation.
- Relevant certifications such as:
- Microsoft Certified: Endpoint Administrator Associate
- Microsoft Certified: Azure Administrator Associate
- Microsoft Certified: Windows Server Hybrid Administrator Associate
- ITIL Foundation
- CISSP (preferred)