SKIP NAVIGATION
Back to Careers

Endpoint Systems Engineer
Job highlights
  • Full time
  • London, Greater London, United Kingdom
  • Engineering
Job ID R200001501 Closing date Never Last Updated 05/03/2026
Endpoint Systems EngineerRole Overview

We are seeking an experienced Endpoint Systems Engineer with strong PowerShell scripting expertise and a proven track record delivering infrastructure automation solutions. This role is responsible for managing and securing enterprise endpoint environments across Windows client estates, ensuring compliance, patching efficiency, and operational stability.

Key Responsibilities

Endpoint Management & Deployment

  • Design, build, and maintain Windows 11 enterprise images (persistent and non-persistent).
  • Manage application packaging and deployment via MECM.
  • Support co-managed environments (MECM + Intune).
  • Administer Citrix VDI (MCS) task sequences and template management.
  • Maintain driver lifecycle management across enterprise laptop estates.

PowerShell & Automation

  • Develop and maintain PowerShell scripts for automation of deployments, compliance, and reporting.
  • Deliver clear infrastructure automation outcomes that reduce manual effort and improve reliability.
  • Use Git-based workflows for version control and structured change management.
  • Leverage PSADT for structured and scalable application deployments.

Patch & Vulnerability Management

  • Own end-to-end patching across client environment.
  • Maintain Windows 11 gold images and VDI templates.
  • Remediate vulnerabilities using tools such as Tenable.
  • Produce compliance and audit reporting dashboards.

Security & Compliance

  • Manage endpoint protection platforms (e.g., SentinelOne, Microsoft Defender).
  • Enforce BitLocker, Credential Guard, LAPS, and least-privilege principles.
  • Investigate and remediate non-compliant devices.

Active Directory & Policy Administration

  • Administer Active Directory, Group Policy, AppLocker, and configuration baselines.
  • Manage Win 11 compliance policies, configuration profiles, and device targeting strategies.

Required Skills & Experience
  • Strong hands-on experience with MECM.
  • Proven Windows 11 enterprise build and compliance management experience.
  • Advanced PowerShell scripting skills with automation delivery examples.
  • Enterprise patch management across client estates.
  • Experience with endpoint security tooling and vulnerability remediation.
  • Active Directory and Group Policy administration.
  • Understanding of Azure AD / Entra ID and modern identity controls.
  • Experience working within regulated or governance-driven environments.
  • Git workflow management for infrastructure-related changes
  • PowerShell App Deployment Toolkit (PSADT)
  • Advanced MECM collections and query design
  • VMware vSphere exposure
  • Microsoft Endpoint certifications.

Candidate Profile
  • Detail-oriented with strong troubleshooting capability.
  • Proactive in identifying automation and compliance improvements.
  • Comfortable working across infrastructure, security, and desktop teams.
  • Clear communicator with strong documentation skills.
  • Structured, organised, and delivery focused.