Job Description
We are seeking an experienced and highly motivated Compliance and Automation Engineer to join our growing IT Infrastructure team. In this role, you will take co-ownership of our existing Microsoft Intune environment while also architecting and deploying scalable Intune solutions as we transition toward a Managed Service Provider (MSP) model. You will be a cornerstone of our endpoint management strategy, balancing day-to-day operational excellence with forward-looking automation and multi-tenant infrastructure design.Job Responsibilities & Requirements
Responsibilities:
Intune Environment Management
Own and maintain the current Microsoft Intune environment, ensuring high availability, performance, and security compliance at all times.
Monitor, troubleshoot, and resolve endpoint management issues proactively, minimizing disruption to end users and business operations.
Manage device enrollment, configuration profiles, and compliance policies, across Co-managed and Hybrid Azure AD-joined environments.
Partner with the security team to enforce organizational compliance standards, CIS benchmarks, and regulatory requirements through Intune policy frameworks.
Conduct regular audits of the Intune environment, producing compliance reports and remediation plans as needed.
Develop repeatable, scalable deployment frameworks and templates to streamline onboarding of new employees.
MSP-Style Multi-Tenant Expansion
Design, architect, and deploy new Intune environments as the organization scales into an MSP support model, supporting multiple customer tenants.
Develop repeatable, scalable deployment frameworks and templates to streamline onboarding of new client environments.
Establish and enforce best practices, standards, and governance models applicable across all managed tenants.
Collaborate with leadership and client stakeholders to understand requirements and translate them into Intune configurations and automation pipelines.
Automation & DevOps Integration
Design and implement automation solutions using PowerShell, Microsoft Graph API, and other scripting tools to reduce manual effort and increase operational consistency.
Apply DevOps principles including CI/CD pipelines, version control (Git), and Infrastructure-as-Code (IaC) methodologies to endpoint management workflows.
Integrate Intune with Azure DevOps or GitHub Actions for automated policy deployment, testing, and rollback capabilities.
Continuously identify opportunities to automate repetitive tasks, improving efficiency across both current and future client environments.
Leadership & Cross-Functional Collaboration
Serve as the subject matter expert (SME) for Intune and modern endpoint management across the organization.
Provide technical mentorship and guidance to junior engineers and IT staff on best practices, tooling, and architecture decisions.
Lead technical discussions, project planning sessions, and cross-departmental meetings to drive alignment on endpoint strategy.
Document solutions, runbooks, and standard operating procedures (SOPs) to ensure knowledge transfer and operational continuity.
Communicate technical concepts clearly to both technical teams and non-technical stakeholders, including leadership and clients.
Required Qualifications:
5+ years of hands-on experience designing, implementing, and deploying solutions with Microsoft Intune in production environments.
Demonstrated experience with Co-management (Microsoft Endpoint Configuration Manager + Intune) and Hybrid Azure AD-joined device scenarios.
Proven track record of managing Intune environments at scale, including multi-tenant or MSP-style deployments.
Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent combination of experience and education which clearly indicates the ability to perform the essential functions of the position.
Other Required Technical Qualifications:
Deep expertise in Microsoft Intune: device enrollment (BYOD, Corporate), configuration profiles, compliance policies, app deployment, and Windows Autopilot.
Strong proficiency in PowerShell scripting and the Microsoft Graph API for automation and reporting.
Solid understanding of Azure Active Directory, Conditional Access, and identity-driven security models.
Functional knowledge of DevOps practices: CI/CD pipelines, Git-based version control.
Experience with Microsoft Endpoint Configuration Manager (MECM/SCCM) and Co-management workloads.
Familiarity with security frameworks such as CIS Benchmarks, NIST, or CMMC as they relate to endpoint compliance.
Understanding of network fundamentals, PKI, and certificate management as they apply to device management.
Exposure to zero-trust architecture principles as applied to endpoint and identity management.
Preferred Qualifications:
Microsoft certifications such as MD-102 (Endpoint Administrator), MS-102, or AZ-104 (Azure Administrator).
Experience working in or transitioning an IT organization to an MSP or shared-services support model.
Familiarity with Microsoft Defender for Endpoint and its integration with Intune for endpoint security management.
Experience with Microsoft Sentinel, Azure Monitor, or Log Analytics for compliance reporting and alerting.
Prior experience leading or mentoring other engineers in a formal or informal capacity.
Additional Requirements:
10% travel may be required.
MiTek Perks:
Generous time off including Paid Time Off, 13 annual holidays, and volunteer time off
Day One Medical/Rx, Dental and Vision Plans
Family friendly benefits including Paid Caregiver Leave, Paid Parental Leave and Adoption Reimbursement
Performance/Incentive bonuses
Career advancement, training opportunities, Employee Resource Groups, and tuition reimbursement
Retirement programs including Matching 401(k) Contributions and Profit Sharing
Employer paid Short-Term Disability, Long-Term Disability and Life Insurance
myFlexPay partner – allows you to track, manage and access your pay anytime
In compliance with the Equal Pay for Equal Work Act, the pay range for this position is estimated at $98k-120k/year. Base pay offered may vary based on job-related knowledge, skills, and experience. Please visit www.mii.com/about/careers/ to learn more about MiTek’s benefit opportunities.
MiTek is a platform innovator and enabler that exists to transform the building industry with better building solutions. In 1955, MiTek transformed residential construction with the invention of the Gang-Nail plate and a digital platform that provided an affordable and scalable way to manufacture wood trusses. Today, MiTek delivers software, services, engineered products, and automated solutions that enable the building industry to improve efficiencies by optimizing the balance between off-site and on-site. With nearly 5,600 team members worldwide, MiTek collaborates across the building industry to enable and accelerate transformational breakthroughs in design and construction to transform the way the industry designs, makes, and builds. As a Berkshire Hathaway (NYSE: BRK-A, NYSE: BRK-B) company since 2001, MiTek has a record of continuous growth and innovation.
MiTek is an E-Verify and Drug and Tobacco-Free Workplace.
We are an equal opportunity employer; and all qualified applicants will receive consideration for employment without regard to race, color, creed, religion, national origin, ethnicity, physical or mental disability, sex (including pregnancy, sexual orientation, gender identity or expression, or transgender status), age (40 and over), genetic information (including family medical history), veteran status, or any other protected characteristic.
For accommodation to assist with completing this application, please contact Human Resources at +1 314-434-1200.