Title:  Senior Engineer IT Endpoint

Position Summary

The Senior Engineer IT Systems is a critical technical leader responsible for the design, engineering, implementation, and optimization of enterprise endpoint management solutions across a large-scale, multi-platform environment. This role supports and enhances end user computing (EUC) capabilities by leveraging Microsoft Endpoint Manager (Intune and SCCM/MECM), Autopilot, and modern device management technologies.

This position plays a key role in driving endpoint transformation initiatives including Unified Endpoint Management (UEM), Zero Trust security, device compliance, and automation across Windows, macOS, iOS, and Android platforms. The ideal candidate brings deep expertise in endpoint engineering, strong automation skills, and the ability to deliver secure, scalable, and high-performing workplace technology solutions.

Essential Responsibilities

• Design, implement, and manage enterprise endpoint management solutions using Microsoft Intune, SCCM/MECM, and Microsoft Endpoint Manager
• Lead endpoint architecture and engineering efforts across Windows, macOS, iOS, and Android environments
• Drive Unified Endpoint Management (UEM) strategy including device lifecycle management, provisioning, and compliance enforcement
• Implement and manage Windows Autopilot and co-management (Intune + SCCM) for modern device provisioning and configuration
• Develop and enforce endpoint security policies including Zero Trust principles, Conditional Access, encryption, and compliance policies
• Manage mobile device management (MDM) and mobile application management (MAM) policies to secure enterprise data and applications

• Administer Azure AD (Entra ID), Group Policy (GPO), and identity-based access controls for endpoint environments
• Monitor and maintain endpoint compliance, patching, configuration baselines, and application deployments
• Automate endpoint management processes using PowerShell and scripting frameworks to improve efficiency and consistency
• Serve as Tier 3 escalation point for complex endpoint issues; perform root cause analysis (RCA) and implement long-term solutions
• Lead endpoint-related projects and initiatives, providing technical leadership and guidance to team members
• Collaborate with Security, Infrastructure, Cloud, and Service Desk teams to ensure alignment of endpoint solutions with business and security objectives
• Develop and maintain technical documentation, architecture designs, and operational procedures
• Stay current with industry trends, emerging technologies, and best practices in endpoint management and modern workplace solutions
• Participate in on-call rotation and provide support for critical incidents as required
• Other duties as assigned

Minimum Experience and Qualifications

• Bachelor’s degree in computer science, Information Systems, or a related discipline; OR equivalent combination of education and relevant experience
• Four (4) years of progressive IT experience with a strong focus on endpoint engineering, endpoint management, and end user computing (EUC)
• Deep expertise in Microsoft Endpoint Manager including Intune and SCCM/MECM in enterprise environments
• Hands-on experience with Windows Autopilot, co-management, and modern device provisioning strategies
• Strong experience managing multi-platform environments including Windows, macOS, iOS, and Android
• Experience implementing and managing MDM (Mobile Device Management) and MAM (Mobile Application Management) solutions
• Strong understanding of endpoint security including compliance policies, Conditional Access, encryption, and Zero Trust architecture
• Experience with Azure AD (Entra ID), Active Directory, Group Policy (GPO), and Microsoft 365 services
• Proficiency in PowerShell scripting and automation of endpoint management tasks
• Experience with patch management, application deployment, and endpoint lifecycle management
• Strong troubleshooting and problem-solving skills in complex enterprise environments
• Proven ability to lead technical initiatives and deliver solutions in large-scale environments
• Excellent communication skills with the ability to translate technical concepts to non-technical stakeholders
• Ability to work flexible hours and participate in on-call support rotations
• Available for occasional overnight travel (10%)
• Must pass a ten (10) year background check and pre-employment drug test
• Must be legally eligible to work in the country in which the position is located
• Authorization to work in the US is required. This position is not eligible for visa sponsorship

Preferred Experience and Qualifications:

• Eight (8) years of progressive IT experience with a strong focus on endpoint engineering, endpoint management, and end user computing (EUC)
• Experience with Microsoft Entra ID Conditional Access and identity-based security controls
• Experience with Microsoft Defender for Endpoint and endpoint security platforms
• Familiarity with Zero Trust architecture and modern security frameworks
• Experience with automation frameworks and Infrastructure as Code (IaC) concepts
• Knowledge of ITIL processes including Incident, Problem, and Change Management
• Experience leading endpoint modernization or digital workplace transformation initiatives
• Certifications such as:
• Microsoft Certified: Endpoint Administrator Associate
• Microsoft Certified: Modern Desktop Administrator Associate
• CompTIA Security+ or equivalent
• ITIL Foundation

Crewmember Expectations:

• Regular attendance and punctuality
• Potential need to work flexible hours and be available to respond on short-notice
• Able to maintain a professional appearance
• When working or traveling on JetBlue flights, and if time permits, all capable crewmembers are asked to assist with light cleaning of the aircraft
• Must be an appropriate organizational fit for the JetBlue culture, that is, exhibit the JetBlue values of Safety, Caring, Integrity, Passion and Fun
• Promote JetBlue’s #1 value of safety as a Safety Ambassador, supporting JetBlue’s Safety Management System (SMS) components, Safety Policy, and behavioral standards
• Identify safety and security concerns, issues, incidents or hazards that should be reported and report them whenever possible and by any means necessary including JetBlue’s confidential reporting systems (Aviation Safety Action Program (ASAP) or Safety Action Report (SAR))
• The use of ChatGPT or any other automated tool during the interview process will disqualify a candidate from being considered for the position.

Equipment:

• Computer and other office equipment

Work Environment:    

• Hybrid
• Traditional office environment

Physical Effort: 

• Generally not required, or up to 10 pounds occasionally, 0 pounds frequently. (Sedentary)