Endpoint Systems Engineer
at Glencore
Posted 17 hours ago
No clicks
- Compensation
- Not specified GBP
- City
- London
- Country
- United Kingdom
Currency: £ (GBP)
Endpoint Systems Engineer responsible for managing and securing enterprise Windows endpoint environments, with emphasis on automation, patching, and compliance. Focus areas include MECM and Intune deployment, Windows 11 imaging, security tooling (SentinelOne, Defender), AD/Policy administration, and PS scripting with PSADT and Git workflows. The role covers vulnerability remediation, reporting, and ensuring least-privilege and BitLocker controls across client estates. Requires strong PowerShell skills and experience with enterprise endpoint management in regulated environments.
- Full time
- London, Greater London, United Kingdom
- Engineering
We are seeking an experienced Endpoint Systems Engineer with strong PowerShell scripting expertise and a proven track record delivering infrastructure automation solutions. This role is responsible for managing and securing enterprise endpoint environments across Windows client estates, ensuring compliance, patching efficiency, and operational stability.
Key ResponsibilitiesEndpoint Management & Deployment
- Design, build, and maintain Windows 11 enterprise images (persistent and non-persistent).
- Manage application packaging and deployment via MECM.
- Support co-managed environments (MECM + Intune).
- Administer Citrix VDI (MCS) task sequences and template management.
- Maintain driver lifecycle management across enterprise laptop estates.
PowerShell & Automation
- Develop and maintain PowerShell scripts for automation of deployments, compliance, and reporting.
- Deliver clear infrastructure automation outcomes that reduce manual effort and improve reliability.
- Use Git-based workflows for version control and structured change management.
- Leverage PSADT for structured and scalable application deployments.
Patch & Vulnerability Management
- Own end-to-end patching across client environment.
- Maintain Windows 11 gold images and VDI templates.
- Remediate vulnerabilities using tools such as Tenable.
- Produce compliance and audit reporting dashboards.
Security & Compliance
- Manage endpoint protection platforms (e.g., SentinelOne, Microsoft Defender).
- Enforce BitLocker, Credential Guard, LAPS, and least-privilege principles.
- Investigate and remediate non-compliant devices.
Active Directory & Policy Administration
- Administer Active Directory, Group Policy, AppLocker, and configuration baselines.
- Manage Win 11 compliance policies, configuration profiles, and device targeting strategies.
- Strong hands-on experience with MECM.
- Proven Windows 11 enterprise build and compliance management experience.
- Advanced PowerShell scripting skills with automation delivery examples.
- Enterprise patch management across client estates.
- Experience with endpoint security tooling and vulnerability remediation.
- Active Directory and Group Policy administration.
- Understanding of Azure AD / Entra ID and modern identity controls.
- Experience working within regulated or governance-driven environments.
- Git workflow management for infrastructure-related changes
- PowerShell App Deployment Toolkit (PSADT)
- Advanced MECM collections and query design
- VMware vSphere exposure
- Microsoft Endpoint certifications.
- Detail-oriented with strong troubleshooting capability.
- Proactive in identifying automation and compliance improvements.
- Comfortable working across infrastructure, security, and desktop teams.
- Clear communicator with strong documentation skills.
- Structured, organised, and delivery focused.
Endpoint Systems Engineer
at Glencore
Endpoint Systems Engineer
at Glencore
Posted 17 hours ago
No clicks
- Compensation
- Not specified GBP
- City
- London
- Country
- United Kingdom
Currency: £ (GBP)
Endpoint Systems Engineer responsible for managing and securing enterprise Windows endpoint environments, with emphasis on automation, patching, and compliance. Focus areas include MECM and Intune deployment, Windows 11 imaging, security tooling (SentinelOne, Defender), AD/Policy administration, and PS scripting with PSADT and Git workflows. The role covers vulnerability remediation, reporting, and ensuring least-privilege and BitLocker controls across client estates. Requires strong PowerShell skills and experience with enterprise endpoint management in regulated environments.
- Full time
- London, Greater London, United Kingdom
- Engineering
We are seeking an experienced Endpoint Systems Engineer with strong PowerShell scripting expertise and a proven track record delivering infrastructure automation solutions. This role is responsible for managing and securing enterprise endpoint environments across Windows client estates, ensuring compliance, patching efficiency, and operational stability.
Key ResponsibilitiesEndpoint Management & Deployment
- Design, build, and maintain Windows 11 enterprise images (persistent and non-persistent).
- Manage application packaging and deployment via MECM.
- Support co-managed environments (MECM + Intune).
- Administer Citrix VDI (MCS) task sequences and template management.
- Maintain driver lifecycle management across enterprise laptop estates.
PowerShell & Automation
- Develop and maintain PowerShell scripts for automation of deployments, compliance, and reporting.
- Deliver clear infrastructure automation outcomes that reduce manual effort and improve reliability.
- Use Git-based workflows for version control and structured change management.
- Leverage PSADT for structured and scalable application deployments.
Patch & Vulnerability Management
- Own end-to-end patching across client environment.
- Maintain Windows 11 gold images and VDI templates.
- Remediate vulnerabilities using tools such as Tenable.
- Produce compliance and audit reporting dashboards.
Security & Compliance
- Manage endpoint protection platforms (e.g., SentinelOne, Microsoft Defender).
- Enforce BitLocker, Credential Guard, LAPS, and least-privilege principles.
- Investigate and remediate non-compliant devices.
Active Directory & Policy Administration
- Administer Active Directory, Group Policy, AppLocker, and configuration baselines.
- Manage Win 11 compliance policies, configuration profiles, and device targeting strategies.
- Strong hands-on experience with MECM.
- Proven Windows 11 enterprise build and compliance management experience.
- Advanced PowerShell scripting skills with automation delivery examples.
- Enterprise patch management across client estates.
- Experience with endpoint security tooling and vulnerability remediation.
- Active Directory and Group Policy administration.
- Understanding of Azure AD / Entra ID and modern identity controls.
- Experience working within regulated or governance-driven environments.
- Git workflow management for infrastructure-related changes
- PowerShell App Deployment Toolkit (PSADT)
- Advanced MECM collections and query design
- VMware vSphere exposure
- Microsoft Endpoint certifications.
- Detail-oriented with strong troubleshooting capability.
- Proactive in identifying automation and compliance improvements.
- Comfortable working across infrastructure, security, and desktop teams.
- Clear communicator with strong documentation skills.
- Structured, organised, and delivery focused.
SIMILAR OPPORTUNITIES
No similar jobs available at the moment.
