[Remote] Senior Consulting Engineer — Endpoint Security, Intune & Azure Platform Security
Note: The job is a remote job and is open to candidates in USA. SilverSky is a global cyber security company with over 20 years of experience in the industry, dedicated to protecting customers with adaptive security services. They are seeking a Senior Consulting Engineer to focus on modern endpoint security and Azure platform security, combining advisory consulting with hands-on client delivery across various security architectures.ResponsibilitiesLead client discovery workshops and technical deep-dives focused on endpoint security, remote management modernization, and user computing strategy; clarify objectives, identify constraints, surface tradeoffs, and translate ambiguity into executable decisionsAssess legacy RMM and endpoint administration approaches; define target-state patterns using Intune, Microsoft security capabilities, and adjacent Azure services aligned to client requirements and SilverSky delivery standardsDeliver client-facing documentation that is clear, bounded, and decision-oriented, including current-state observations, target-state recommendations, risks, assumptions, and operational implicationsPresent recommendations to client stakeholders using clear rationale, sequencing, dependencies, and expected outcomes; support informed decision-making rather than one-way deliveryRun technical working sessions and implementation calls; coordinate dependencies across endpoint, identity, networking, and Azure platform stakeholdersParticipate in governance cadences (status, risks/issues, decisions, next steps) and support change control practices for production-impacting modificationsProvide structured handoff and knowledge transfer, including runbooks, support boundaries, and operational guardrails for managed endpoints and AVD-related servicesDesign and implement Intune-based endpoint management solutions including enrollment, compliance, configuration profiles, update rings, application deployment, and device lifecycle controlsDefine and execute RMM replacement patterns that reduce tool sprawl, improve policy consistency, and align endpoint operations to Microsoft-native management and security capabilitiesBuild repeatable deployment and configuration patterns for Windows endpoints and user computing services, including standard baselines, security controls, and operational documentationEnsure delivery artifacts are traceable and supportable: documented configurations, policy intent, validation outcomes, exceptions, and transition guidance for operations teamsContinuously improve endpoint delivery patterns so future work is safer, faster, and less dependent on one-off operational practicesEngineer secure Azure foundations and controls that support endpoint and AVD workloads, including identity integration, network segmentation, policy, logging, key management, and resource governanceDesign Azure network and platform security patterns appropriate to regulated client environments, with attention to secure connectivity, access paths, and service dependenciesSupport AVD solution design and hardening, including host posture, access controls, profile/storage dependencies, and the interaction between endpoint management and virtual desktop operationsIntegrate delivery work with security operations needs (logging pipelines, alerting expectations, and operational runbooks), coordinating with SOC/MxDR stakeholders when requiredContinuously identify opportunities to standardize and automate repeatable security and platform configuration work without sacrificing safety or compliance postureSkills5+ years of experience delivering Microsoft endpoint, Azure, and security engineering work in consulting, professional services, or a similarly client-facing environmentHands-on experience with Microsoft Intune and modern endpoint management, including policy design, device compliance, application deployment, and operational support modelsExperience assessing or replacing legacy RMM tooling with Microsoft-native endpoint management and security capabilitiesHands-on Azure security experience including network/security design, policy, resource governance, identity integration, logging/monitoring patterns, and key managementWorking knowledge of Azure Virtual Desktop architecture and the dependencies between endpoint posture, identity, network design, and platform controlsAbility to communicate clearly with client stakeholders, including presenting options, constraints, and tradeoffs without ambiguityOperational discipline: documentation, change control, and evidence-minded deliveryExperience with Microsoft security platforms such as Microsoft Defender for Endpoint, Microsoft Defender for Cloud, Microsoft Sentinel, and Defender XDR integration patternsExperience with Azure Virtual Desktop design, deployment, or operational hardening in enterprise environmentsExperience delivering in regulated environments (financial services, healthcare, SLED) and mapping technical controls to governance requirementsExperience building and maintaining reusable internal frameworks and accelerators (baseline configurations, policy sets, deployment templates, operational runbooks), not just one-off fixesRelevant certifications (examples): MD-102, AZ-104, AZ-500, SC-300, SC-200, or equivalent demonstrated expertiseCompany OverviewSilversky offers managed extended detection and response (MxDR) services in cybersecurity. It was founded in 1997, and is headquartered in Morrisville, North Carolina, USA, with a workforce of 201-500 employees. Its website is http://silversky.com.