Open Position Open Position

About Us:
AceNet Consulting is a fast-growing global business and technology consulting firm specializing in business strategy, digital transformation, technology consulting, product development, start-up advisory and fund-raising services to our global clients across banking & financial services, healthcare, supply chain & logistics, consumer retail, manufacturing, eGovernance and other industry sectors.
We are looking for hungry, highly skilled and motivated individuals to join our dynamic team. If you’re passionate about technology and thrive in a fast-paced environment, we want to hear from you.

Job Summary :
We are seeking a highly experienced Senior Endpoint Engineer to lead the design, deployment, and management of a global modern endpoint management ecosystem.

Key Responsibilities:
1.Microsoft Intune Architecture & Global Management:
*Architect, configure, and manage a secure, scalable Microsoft Intune environment for global endpoint control.
*Drive end-to-end deployment and policy enforcement for Windows, macOS, iOS, and Android devices.
*Standardize enrollment, compliance, and configuration profiles aligned with enterprise standards.

2. Cloud PC (Windows 365) & AVD Deployment & Administration:
*Implement and manage Windows 365 Cloud PCs & AVD to support secure, scalable hybrid work in remote and offshore locations.
*Define usage policies, resource allocation, and compliance enforcement for Cloud PC & AVD environments.
*Integrate Cloud PC & AVD management with Intune, Defender for Endpoint, and Azure AD Conditional Access.

3. App Protection & Compliance Policies:
*Design and enforce App Protection Policies (APP) to prevent data leakage on unmanaged and BYOD devices.
*Implement dynamic Compliance Policies with real-time device risk assessment, encryption, secure boot validation, and remediation workflows.
*Enforce conditional access policies based on posture and geographic risk.

4. Application Deployment & Management:
*Deploy and manage Win32, LOB, Store, and mobile apps across platforms.
*Configure deployment rings, detection logic, and rollback strategies using Intune and MECM.
*Automate deployments using PowerShell, Graph API, and Intune scripting tools for consistency and repeatability.

5. Mobile & macOS Device Management:
*Administer MDM for iOS, iPadOS, Android, and macOS, including ABM, and Android Enterprise enrollment.
*Enforce platform-specific policies such as encryption, secure Wi-Fi, VPN, certificate deployment, OS versioning and device configuration and restriction polices.

6. Software Updates & Remediation:
*Design and manage Windows update rings, feature update deployment strategies, and compliance-based remediation workflows.
*Ensure alignment with enterprise patching schedules and global vulnerability management practices.
*Automate reporting and exception handling for software update failures and drift scenarios.

7. Azure AD Joined Devices & Access Enforcement:
*Manage Azure AD Joined and Hybrid Joined devices globally.
Enforce passwordless authentication solutions (e.g., Windows Hello for Business, FIDO2) and MFA policies.
*Configure device compliance-based Conditional Access and risk-tiered enforcement rules.

8. Policy Configuration & Lifecycle Governance:
*Modernize legacy GPOs using Intune Settings Catalog, Administrative Templates, and OMA-URI.
*Maintain a centralized, version-controlled policy baseline adaptable by region, role, and risk.
*Track configuration drift and enforce policy consistency with audit-friendly reporting and rollback capabilities.

9. Self-Healing & Proactive Remediation Scripts:
*Design and implement Intune Proactive Remediation scripts for automated correction of misconfigurations or failed compliance checks.
*Integrate with Azure Automation and Graph API to schedule recurring health checks and enforce desired state.
*Create alert-based triggers to respond to deviations, including ServiceNow ticket creation or device quarantine.

10. Microsoft Endpoint Security Oversight:
*Manage Microsoft Defender for Endpoint policy deployment and telemetry.
*Enforce EDR, attack surface reduction, vulnerability remediation, and automated isolation based on threat signals.
*Coordinate with the SOC team to align endpoint alerts with global security incident response protocols.

11. MECM (Microsoft Endpoint Configuration Manager):
*Maintain legacy MECM environment for -Task sequence OS deployment.
*Patch compliance for isolated/offline devices.
*Application deployment where Intune isn’t feasible.
*Enable and refine co-management to transition workloads to Intune.

12. ServiceNow Asset Management Integration:
*Integrate Intune and MECM with ServiceNow CMDB for real-time asset tracking, software/hardware inventory, and compliance mapping.
*Automate asset lifecycle updates based on provisioning, reassignment, retirement, and failure remediation events.
*Ensure endpoint data flows accurately into ServiceNow for audit readiness, exception management, and risk scoring.

Role Requirements and Qualifications:
*Bachelor’s degree in IT, Cybersecurity, or a related field.
*10+ years of hands-on experience managing enterprise endpoint infrastructure using:
*Microsoft Intune & Endpoint Manager.
*Cloud PC (Windows 365).
*Microsoft Defender for Endpoint.
*Azure AD, Conditional Access & password less solutions.
*MacOS/iOS/Android device management.
*Intune Graph API scripting & PowerShell.
*ServiceNow CMDB and Asset Management.
*MECM / SCCM.

Why Join Us:
*Opportunities to work on transformative projects, cutting-edge technology and innovative solutions with leading global firms across industry sectors.
*Continuous investment in employee growth and professional development with a strong focus on up & re-skilling.
*Competitive compensation & benefits, ESOPs and international assignments.
*Supportive environment with healthy work-life balance and a focus on employee well-being.
*Open culture that values diverse perspectives, encourages transparent communication and rewards contributions.

How to Apply:
If you are interested in joining our team and meet the qualifications listed above, please apply and submit your resume highlighting why you are the ideal candidate for this position