- Professional
- Ufficio in Erdenheim
Description
Job Summary:
The Endpoint & Integration Engineer is a hybrid role responsible for the ownership, maintenance, and security of all endpoint management systems and tooling across the organization. This role ensures a seamless end-user experience through automation, standardization, and proactive support, while enforcing security policies and managing key technology systems that support endpoint security, patching, and remote monitoring. In addition to endpoint management, this role leads the design and implementation of integrations between internal employee systems and customer-facing portals, ensuring data flows smoothly across platforms. The ideal candidate is a hands-on technical expert with strong troubleshooting skills, a security-first mindset, and a deep understanding of both Windows and Apple ecosystems.
Supervisory Responsibilities
· None.
Endpoint Duties & Responsibilities:
· Has full accountability and ownership over assigned endpoint systems and tools.
· Is responsible for lifecycle maintenance, monitoring, security hardening, and performance tuning.
· Administers and optimizes tools such as Kaseya VSA (RMM), Datto AV/EDR/DattoDNS, ScreenConnect, and VulScan.
· Leads imaging and deployment processes using Autopilot, SmartDeploy, and Apple Business Manager.
· Manages mobile devices using InTune and Addigy (Android OS/iOS).
· Maintains patching schedules, remediation protocols, and automated responses to threats.
· Configures and manages Zero Trust Endpoint (Threatlocker, AutoElevate).
· Manages Zero Trust Network policies with Microsoft GSA and ensure compliance with internal standards.
· Owns vendor relationships and manages solutions design, contract scoping, and pricing.
· Manages and enforces Azure Conditional Access policies and Cloud GPOs.
· Partners with internal teams to align security posture with Microsoft best practices.
· Leads or assists in deployment projects and onboarding of new technologies and customers.
· Oversees automated asset discovery and password rotation.
· Performs other duties as assigned.
Integration Duties & Responsibilities:
· Owns technical configurations for CloudRadial,ConnectBooster, and ITGlue
· Evaluates core business systems like PSA, documentation, ticketing, billing or communication tools to streamline internal workflows through integrations.
· Uses scripting, APIs, and third-party tools to extract, transform, and present data in meaningful ways.
· Generates and maintains reporting across endpoint and security systems to support transparency, customer satisfaction and reconciliation.
· Maintains integrations across KaseyaOne, ITGlue, Network Glue, and automation platforms.
· Utilizes AI tools for documentation, diagnostics, automation, and improved company workflow
· Ensures that integrations follow established security standards, best practices, and compliance policies.
· 20% Travel to client sites
· Performs other duties as assigned.
Product Ownership and System Maintenance
· Primary owner and responsible party for the assigned toolsets/platforms/vendors and their outcomes, specifically: Kaseya VSA, RMM tools, Datto AV/EDR, Datto DNS, Intune, Addigy, AutoElevate, ABM, VulScan endpoint, ScreenConnect, Entra ID SSO, MFA Policies, Microsoft GSA, KaseyaOne, and CoPilot
· Expected to make system adjustments, recommendations, and improvements.
· Create recurring maintenance procedure and effectively execute.
· Expected to be knowledgeable on related topics/systems to complete projects, onboardings, support escalations.
· Ability to estimate subject area labor, software, licensing, and hardware costs.
Time Commitments & On-Call Expectations:
· Full-Time Role – Regular business hours with flexibility as required by project or incident response needs.
· On-Call Rotation – Participate in Tier 1 NOC and Tier 2 SOC escalation rotation every 2–3 months for a 2-week period.
· Tier 3 On-Call – Always available 24x7 for your designated area of responsibility. If Tier 2 (Tech Management) cannot resolve an issue, you are expected to respond to Tier 3 on-call inquiries within 2–4 hours.
Requirements
Required Skills & Abilities:
· Ability to work in a fast-paced environment and manage shifting priorities.
· Strong problem-solving skills and the ability to think critically in complex situations.
· Excellent organizational skills with attention to detail.
· Familiarity with scripting (PowerShell, Bash, or similar) for automation.
· Experience with Microsoft Azure, Conditional Access, and GPO management.
· Knowledge of zero trust security principles and relevant platforms (e.g., Threatlocker, AutoElevate).
· Strong troubleshooting skills and ability to handle escalated technical issues.
· Familiarity with AI, analytics platforms, or data visualization tools
· Excellent documentation, communication, and time-management skills.
Education & Experience:
· Bachelor’s degree in Information Technology, Computer Science, Engineering or related field, Masters degree prefered.
· 3+ years of experience in endpoint management or IT systems engineering roles.
· Hands-on experience with Kaseya RMM, Datto products, InTune, Addigy, and Apple Business Manager.
· Preferred Certifications (not required but a plus):
o Microsoft Certified: Endpoint Administrator Associate
o Kaseya Certified Administrator
o Datto Certified Specialist
o CompTIA Security+, CySA+
o Apple Certified Support Professional (ACSP)
o Automation or API integration training/certifications
Physical Requirements:
· Prolonged periods sitting at a desk and working on a computer.
· Occasionally, equipment may need to be lifted or moved up to 25 lbs.
Candidarsi ora 
			 
			 
			 
			