Senior Consulting Engineer — Endpoint Security, Intune & Azure Platform Security

Thanks for the click. We know your time is valuable so we will get right to it.

We’ve amassed some of the best and brightest minds in cyber security who are passionate about protecting the digital world. Our team blends advanced technology alongside deep expertise to tackle the toughest cyber threats out there. Put simply, our mission is to stay ahead of the curve and create a safer digital landscape for our partners, and we think adding a Senior Consulting Engineer will up our cyber game.

This is a senior-level consulting engineering role focused on modern endpoint security, RMM replacement, and secure management at scale using Microsoft Intune, with supporting depth in Azure network and platform security. The role combines advisory consulting responsibilities with hands-on client delivery across endpoint management, identity, Azure Virtual Desktop (AVD), and security architecture.

You will work directly with client stakeholders to assess legacy endpoint tooling, define target-state management and security patterns, and deliver durable outcomes that reduce operational friction while improving control and visibility. In parallel, you will help shape reusable delivery patterns, baseline configurations, and operational guardrails that other engineers can apply consistently across client environments.

 

Role Overview.

This role sits at the intersection of endpoint security, device management modernization, Azure platform security, and advisory delivery. You will operate as a technical authority for both clients and internal teams—helping define target-state endpoint and remote management architectures, evaluate security and operational tradeoffs, and guide decisions that balance risk, usability, and supportability.

A primary thread across this work is Azure Virtual Desktop (AVD), which connects endpoint posture, identity, network design, and platform controls into a coherent service model. You will be expected to understand how endpoint security and management decisions affect virtual desktop delivery, user experience, and operational resilience.

The position carries a high degree of trust and autonomy. You will be expected to influence direction, challenge assumptions, and take responsibility for outcomes—not simply execute predefined tasks.

 

What you’ll be doing.

Client Advisory, Delivery & Decision Support

• Lead client discovery workshops and technical deep-dives focused on endpoint security, remote management modernization, and user computing strategy; clarify objectives, identify constraints, surface tradeoffs, and translate ambiguity into executable decisions.
• Assess legacy RMM and endpoint administration approaches; define target-state patterns using Intune, Microsoft security capabilities, and adjacent Azure services aligned to client requirements and SilverSky delivery standards.
• Deliver client-facing documentation that is clear, bounded, and decision-oriented, including current-state observations, target-state recommendations, risks, assumptions, and operational implications.
• Present recommendations to client stakeholders using clear rationale, sequencing, dependencies, and expected outcomes; support informed decision-making rather than one-way delivery.
• Run technical working sessions and implementation calls; coordinate dependencies across endpoint, identity, networking, and Azure platform stakeholders.
• Participate in governance cadences (status, risks/issues, decisions, next steps) and support change control practices for production-impacting modifications.
• Provide structured handoff and knowledge transfer, including runbooks, support boundaries, and operational guardrails for managed endpoints and AVD-related services.

Endpoint Management Modernization & Intune Delivery

• Design and implement Intune-based endpoint management solutions including enrollment, compliance, configuration profiles, update rings, application deployment, and device lifecycle controls.
• Define and execute RMM replacement patterns that reduce tool sprawl, improve policy consistency, and align endpoint operations to Microsoft-native management and security capabilities.
• Build repeatable deployment and configuration patterns for Windows endpoints and user computing services, including standard baselines, security controls, and operational documentation.
• Ensure delivery artifacts are traceable and supportable: documented configurations, policy intent, validation outcomes, exceptions, and transition guidance for operations teams.
• Continuously improve endpoint delivery patterns so future work is safer, faster, and less dependent on one-off operational practices.

Azure Network & Platform Security with AVD Enablement

• Engineer secure Azure foundations and controls that support endpoint and AVD workloads, including identity integration, network segmentation, policy, logging, key management, and resource governance.
• Design Azure network and platform security patterns appropriate to regulated client environments, with attention to secure connectivity, access paths, and service dependencies.
• Support AVD solution design and hardening, including host posture, access controls, profile/storage dependencies, and the interaction between endpoint management and virtual desktop operations.
• Integrate delivery work with security operations needs (logging pipelines, alerting expectations, and operational runbooks), coordinating with SOC/MxDR stakeholders when required.
• Continuously identify opportunities to standardize and automate repeatable security and platform configuration work without sacrificing safety or compliance posture.

 

What does it take to succeed in this role?

• 5+ years of experience delivering Microsoft endpoint, Azure, and security engineering work in consulting, professional services, or a similarly client-facing environment.
• Hands-on experience with Microsoft Intune and modern endpoint management, including policy design, device compliance, application deployment, and operational support models.
• Experience assessing or replacing legacy RMM tooling with Microsoft-native endpoint management and security capabilities.
• Hands-on Azure security experience including network/security design, policy, resource governance, identity integration, logging/monitoring patterns, and key management.
• Working knowledge of Azure Virtual Desktop architecture and the dependencies between endpoint posture, identity, network design, and platform controls.
• Ability to communicate clearly with client stakeholders, including presenting options, constraints, and tradeoffs without ambiguity.
• Operational discipline: documentation, change control, and evidence-minded delivery.

 

What are desirables?

• Experience with Microsoft security platforms such as Microsoft Defender for Endpoint, Microsoft Defender for Cloud, Microsoft Sentinel, and Defender XDR integration patterns.
• Experience with Azure Virtual Desktop design, deployment, or operational hardening in enterprise environments.
• Experience delivering in regulated environments (financial services, healthcare, SLED) and mapping technical controls to governance requirements.
• Experience building and maintaining reusable internal frameworks and accelerators (baseline configurations, policy sets, deployment templates, operational runbooks), not just one-off fixes.
• Relevant certifications (examples): MD-102, AZ-104, AZ-500, SC-300, SC-200, or equivalent demonstrated expertise.

 

Work Arrangement

This is an onsite position based in the United States.
At this time, we are not hiring candidates who require visa sponsorship. All applicants must be legally authorized to work in the United States without the need for current or future visa sponsorship.

 

 

How we work.

Our 3 values define how we operate internally as well as externally:

Vision - We embrace a forward-thinking mindset. Our team has a clear and inspiring picture of the future that helps drive our decisions towards creating and delivering world-class security services.

Velocity - We have a bias for action. We move swiftly and with purpose toward our goals and objectives and can easily adapt (and adjust) along the way.

Vigilance – We foster a culture of proactive awareness for our company and our customers, who trust us to be an extension of their team. We are always looking for areas where we can innovate, improve, fix, transform and revolutionize, which ensures the protection, safety and success of everyone at SilverSky.

 

Individuals that can act intelligently and confidently without an ego will thrive.

If this opportunity sounds interesting and you are passionate about redefining how the world thinks about cyber security, we want to hear from you. Apply now if you are interested in learning more about how we can change the rules of engagement, together.

 

About SilverSky

We are a global cyber security company with more than 20 years of professional experience in the industry. Our 300+ employees are on a mission to protect our customers with comprehensive, adaptive security services that maximize technology and automate responses, while empowering security analysts to hunt for threats, react and respond immediately. It’s the human enhanced response that differentiates SilverSky and allows us to create the most comprehensive managed detection and response (MxDR) solution in the industry by delivering on our Vision, Velocity, Vigilance philosophy. Follow us on X and LinkedIn to learn more.