Title:  Engineer IT Endpoint

Position Summary
The Endpoint Engineer is responsible for implementing, managing, and optimizing enterprise endpoint management solutions across a multi-platform environment. This role supports end user computing (EUC) services using Microsoft Endpoint Manager (Intune and SCCM/MECM), ensuring secure, compliant, and high-performing devices across Windows, macOS, iOS, and Android platforms.

This position plays a key role in modernizing endpoint management through Unified Endpoint Management (UEM), automation, and security best practices. The ideal candidate is a hands-on engineer with strong experience in device management, patching, and endpoint security in a large-scale enterprise environment.

Essential Responsibilities

• Implement, administer, and optimize endpoint management solutions using Microsoft Endpoint Manager (Intune and SCCM/MECM)
• Support design and deployment of endpoint solutions across Windows, macOS, iOS, and Android environments
• Manage device provisioning and configuration using Windows Autopilot and co-management (Intune + SCCM)
• Administer mobile device management (MDM) and mobile application management (MAM) policies to secure enterprise devices and data
• Perform patch management and ensure endpoint compliance with security baselines and organizational policies
• Monitor endpoint health, performance, and compliance; proactively remediate issues and enforce configuration standards
• Manage endpoint security configurations including encryption, compliance policies, and access controls
• Troubleshoot and resolve complex endpoint issues impacting user productivity; perform root cause analysis (RCA)
• Serve as a Tier 3 escalation point for endpoint-related incidents and service requests
• Automate endpoint management tasks using PowerShell and scripting tools
• Collaborate with Security, Infrastructure, and Service Desk teams to align endpoint solutions with business and security requirements
• Maintain documentation, standard operating procedures (SOPs), and configuration standards
• Stay current with industry trends and best practices in endpoint management, EUC, and modern workplace technologies
• Participate in on-call rotation and provide support for critical incidents as needed
• Other duties as assigned

Minimum Experience and Qualifications

• Bachelor’s degree in computer science, Information Systems, or a related discipline; OR demonstrated capability to perform job responsibilities with a High School Diploma/GED and at least four (4) years of previous relevant work experience
• Three (3) years of experience in endpoint engineering, desktop engineering, or end user computing (EUC) environments
• Hands-on experience with Microsoft Endpoint Manager including Intune and SCCM/MECM
• Experience with Windows Autopilot and modern device provisioning
• Experience managing multi-platform environments including Windows, macOS, iOS, and Android
• Strong understanding of MDM (Mobile Device Management) and MAM (Mobile Application Management)
• Experience with Azure AD (Entra ID), Active Directory, Group Policy (GPO), and Microsoft 365 services
• Experience with patch management, application deployment, and endpoint lifecycle management
• Basic to intermediate PowerShell scripting and automation experience
• Strong troubleshooting and problem-solving skills in enterprise environments
• Excellent communication skills and ability to work cross-functionally
• Ability to work flexible hours and participate in on-call support rotations

• Available for occasional overnight travel (10%)
• Must pass a ten (10) year background check and pre-employment drug test

• Must be legally eligible to work in the country in which the position is located
• Authorization to work in the US is required. This position is not eligible for visa sponsorship

Preferred Experience and Qualifications:

• Four (4) years of experience in endpoint engineering, desktop engineering, or end user computing (EUC) environments
• Experience with Microsoft Entra ID Conditional Access and identity-based security controls
• Experience with Microsoft Defender for Endpoint and endpoint security platforms
• Familiarity with Zero Trust security principles and endpoint compliance frameworks
• Experience with automation and scripting frameworks (PowerShell, basic IaC concepts)
• Knowledge of ITIL processes (Incident, Problem, Change Management)
• Experience supporting virtual desktop environments (VDI) is a plus
• Certifications such as:
  • Microsoft Certified: Endpoint Administrator Associate
  • Microsoft Certified: Modern Desktop Administrator Associate
  • CompTIA Security+ or equivalent
  • ITIL Foundation

Crewmember Expectations:

• Regular attendance and punctuality
• Potential need to work flexible hours and be available to respond on short-notice
• Able to maintain a professional appearance
• When working or traveling on JetBlue flights, and if time permits, all capable crewmembers are asked to assist with light cleaning of the aircraft
• Must be an appropriate organizational fit for the JetBlue culture, that is, exhibit the JetBlue values of Safety, Caring, Integrity, Passion and Fun
• Promote JetBlue’s #1 value of safety as a Safety Ambassador, supporting JetBlue’s Safety Management System (SMS) components, Safety Policy, and behavioral standards
• Identify safety and security concerns, issues, incidents or hazards that should be reported and report them whenever possible and by any means necessary including JetBlue’s confidential reporting systems (Aviation Safety Action Program (ASAP) or Safety Action Report (SAR))
• The use of ChatGPT or any other automated tool during the interview process will disqualify a candidate from being considered for the position.

Equipment:

• Computer and other office equipment

Work Environment:                                                                                                                                                      

• Traditional office environment

Physical Effort: 

• Generally not required, or up to 10 pounds occasionally, 0 pounds frequently. (Sedentary)