Microsoft System Engineer

We are Systematix and we are currently looking for an experienced InTune Specialist to help optimize the Microsoft InTune environment for one of our clients. This role is primarily remote with on-site visits as needed, in north Toronto. ABOUT THE PROJECT Our client is seeking a senior InTune Administrator with significant expertise in rolling out and supporting InTune implementations from end to end, including post-implementation setup, config and optimization of various Policies . This role will focus on deploying and supporting all InTune features to meet the client’s requirements, with the goal of completing the project to production and enabling the internal team to be self-sufficient within a 6-month timeframe. Experience managing the broader Microsoft ecosystem, including Entra ID/Directory Services/M365/Azure AD, would be highly advantageous. The successful candidate will work directly with the internal team to implement and optimize InTune features while adhering to the technical requirements outlined. ABOUT THE RESPONSIBILITIES InTune Administrator Key responsibilities include:

• Configuring Conditional Access Policies to control access to resources based on device compliance and user conditions.
• Creating and managing Compliance Policies to ensure devices meet organizational standards.
• Implementing Application Protection Policies to safeguard corporate data within mobile apps.
• Setting up and configuring Windows Autopilot for device provisioning.
• Managing Windows App Deployment, including line-of-business applications.
• Establishing Role-Based Access Control (RBAC) for task management within InTune.
• Maintaining and transitioning SCCM functionalities to InTune where possible.
• Auditing, improving, and migrating desktop/endpoint Group Policy elements to InTune.
• Integrating InTune with Azure Active Directory for identity and access management.
• Configuring InTune reports and analytics for device and app management.
• Setting up secure network configurations, including VPN, Wi-Fi, and certificate profiles.
• Managing SCEP integration between InTune and internal Certificate Authorities (CA).
• Enabling co-management of devices with Configuration Manager.
• Implementing Endpoint Privilege Management to enhance security.
• Integrating with mobile threat defense solutions to protect against mobile threats.
• Implementing a Zero Trust security model using InTune and tools like Duo.
• Collaborating with the security team to enable passwordless authentication on endpoints.
• Configuring Data Loss Prevention (DLP) policies to secure sensitive information.
• Deploying custom PowerShell scripts for advanced device management tasks.

ABOUT THE ROLE This is a 6-month contract role, working directly with the internal team. The position is mostly remote, based in the GTA, with on-site requirements depending on project needs. APPLY NOW If you are interested in finding out more, please contact us or submit your resume. Or, if you know someone who meets these qualifications, please forward this assignment. ABOUT SYSTEMATIX Systematix is a Global Consulting and Resourcing firm headquartered in Canada with offices across North America and the United Kingdom. We provide the highest caliber consulting solutions to a diverse client base that includes all levels of Government and all Private Industry sectors. Systematix is committed to creating a diverse, inclusive environment and is proud to be an equal opportunity employer. At Systematix, we don’t just accept difference, we thrive on it and believe that diverse cultures, perspectives, and experiences enhance our workforce and bring value to our community. Systematix Technology Consultants Inc has adopted the Employment Equity Policy to promote the full participation and advancement of members of the designated groups (women, indigenous peoples, members of visible minority groups, and persons with disabilities) under the Canadian Human Rights Act and Employment Equity Act in the Systematix Technology Consultants Inc workforce.