Endpoint & Identity Engineer

This position will report to the Digital Workplace Manager in the Information Security Division, in the implementation of the Affidea Cybersecurity program. To ensure secure, efficient, and seamless access to enterprise systems and data by managing endpoint devices and identity infrastructure, enabling users to work productively while maintaining strong security controls.

Endpoint Management

·        Manage and secure all endpoint devices (laptops, desktops, mobile devices, etc.).

·        Ensure consistent configuration, patching, and compliance across all endpoints.

Identity and Access Management (IAM)

·        Maintain secure identity infrastructure.

·        Manage user access, authentication, and authorization across systems.

Security and Compliance

·        Ensure endpoint and identity systems comply with security policies and regulatory requirements.

·        Detect and respond to threats targeting endpoints or identities.

User Support and Optimization

·        Provide technical support and guidance related to endpoint and identity services.

·        Continuously improve user experience and system performance.

TASKS

Endpoint Management

·        Deploy and manage endpoint management tools (e.g., Microsoft Intune, SCCM, Jamf).

·        Automate device provisioning and configuration.

·        Monitor endpoint health and enforce security baselines.

·        Apply OS and application patches and updates.

·        Support remote device management and troubleshooting.

Identity and Access Management (IAM)

·        Administer identity platforms (e.g., Azure AD, Active Directory, Sailpoint).

·        Implement and manage Single Sign-On (SSO) and Multi-Factor Authentication (MFA).

·        Define and enforce role-based access controls (RBAC).

·        Monitor and audit identity-related activities.

·        Support lifecycle management (onboarding, offboarding, access reviews).

Security and Compliance

·        Integrate endpoint and identity systems with SIEM and security tools.

·        Respond to security incidents involving compromised devices or accounts.

·        Conduct regular compliance checks and vulnerability assessments.

·        Collaborate with security teams on policy enforcement and incident response.

User Support and Optimization

·        Troubleshoot access issues and device problems.

·        Document procedures and create user guides.

·        Gather feedback to enhance endpoint and identity services.

·        Participate in training and awareness initiatives.