PREFERRED QUALIFICATIONS: + 5 or more years of hands-on experience in enterprise endpoint management with a strong focus on SCCM OSD task sequence development and Intune + Demonstrated experience architecting and deploying Windows Autopilot at scale including device hash collection, Autopilot profile configuration, and ESP design + Expert-level proficiencyin SCCM including OSD, software distribution, patch management, collections, and co-management configuration + Strong experience with Intune including Win32 app packaging, compliance policies, Settings Catalog, and cloud-native device management + Advanced PowerShell scripting ability with experience writing production automation for large enterprise environments + Experience managing Windows imaging across diverse hardware including driver injection, firmware management, and persona-based build design + Working knowledge of hybrid Entra ID environments, Conditional Access, and modern identity concepts + Familiarity with Imprivata OneSignor equivalent shared workstation authentication solutions in clinical or highly regulated environments + Ability to work independently on complex, multi-phase engineering initiatives with minimal supervision + Experience in a healthcare IT environment with understanding of clinical workflow considerations and downtime risk management + Hands-on experience with Patch My PC (PMPC) for third-party patch management integrated with SCCM and Intune + Familiarity with Epic Hyperdrive local client deployment, configuration, and support + Experience with Azure DevOps using Agile methodologyand Kanban-based sprint execution + Microsoft certifications such as MD-102 (Endpoint Administrator), SC-300, or equivalent + Experience contributing to or owning DEX or endpoint analytics reporting initiatives . + Architect and operationalize Windows Autopilot at scale for both new hardware enrollment and conversion of existing SCCM-managed devices + Develop and maintain automated hardware hash collection and upload workflows using PowerShell and the Microsoft Graph API + Design zero-touch or near-zero-touch provisioning workflows for clinical environments, accounting for VPN dependencies, Imprivata integration, and domain join requirements + Lead co-management configuration and workload migration strategy, defining the path from SCCM-primary to Intune-first endpoint management + Build and maintain Autopilot deployment profiles, enrollment status page (ESP) configurations, and device group targeting in Entra ID .