Infrastructure Solutions Architect 5 - EPM Implementor

CTO PDSS Infrastructure Solutions Architect 5 (EPM Administrator) Job Description

We are seeking a skilled individual with Endpoint Privileged Management (EPM) experience. The ideal candidate will have a good understanding of endpoint privileged management CyberArk EPM Delinea EPM Microsoft Intune EPM Microsoft 365 and other related technologies. As the EPM Administrator you will play a crucial role in managing and maintaining our organizations endpoint management infrastructure. As a Windows Endpoint Privilege Management Administrator you will be responsible for implementing managing and maintaining the Endpoint Privilege Management (EPM) policies in the Intune console. You will work with Microsoft Intune to allow the organizations users to run as standard users without administrator rights and complete tasks that require elevated privileges. This includes application installs updating device drivers and running certain Windows diagnostics. Implement Local Administrator Password Solution (LAPS) to leverage Entra ID.

To be successful in this role you should have a strong understanding of Endpoint Privilege Management and its role in Zero Trust security. You should also have experience with Microsoft Entra joined and Microsoft Entra hybrid joined endpoints Microsoft Intune Enrollment and Microsoft Configuration Manager comanaged devices.

Responsibilities:

Design & implement Microsoft LAPS local administrator password solution for windows.

Design & implement Microsoft Intune EPM Endpoint Privilege Manager solution for windows.

Configure deploy administer troubleshoot and manage Microsoft Intune EPM to support modern device management strategies.

Evaluate EPM use case by application and draft migration to Intune EPM.

Review & repackage current applications to work on Intune EPM solution.

Draft technical operational documents along with use guide for each use case migration to Intune EPM solution.

Collaborate with Agency IT teams to ensure seamless integration of Intune EPM with other systems and applications.

Provide technical support to endusers for Intunerelated issues and escalations.

Stay current with industry best practices and trends related to endpoint management and security.

Required skills / technologies:

CyberArk EPM (Endpoint Privileged Management)

Delinia EPM (Endpoint Privileged Management)

Intune EPM (Microsoft Endpoint Management)

Configuration & rollout EPM solution

Local Administrator Password Solution (LAPS)

Software Packaging Installation and Delivery

Entra ID (Azure AD)

Windows 10/11 configuration and management

Microsoft Active Directory Manager

Endpoint Privilege Management (EPM)

Workstation privileged access management

Additional good to have responsibilities/skills:

Administer and monitor privileged accounts ensuring compliance with security policies and regulatory requirements.

Collaborate with IT and security teams to identify assess and mitigate security risks related to elevated privileges.

Design and enforce access control policies for privileged users and accounts.

Conduct regular access reviews and audits to ensure compliance with security standards.