Go to job search

IT Solutions Specialist- Endpoint Services

Mott Macdonald

IT Solutions Specialist- Endpoint Services

Salary Not Specified

Mott Macdonald, Newcastle upon Tyne

  • Full time
  • Permanent
  • Onsite working

Posted 3 weeks ago, 23 May | Get your application in now before you miss out!

Closing date: Closing date not specified

job Ref: a5b4aa88fd484778b44f8a4cf57f25fa

Full Job Description

We have an opportunity for an IT Solutions Specialist- Endpoint Services to join our global team. The IT Solutions Specialist- Endpoint Services role is part of the global Endpoint services team, who deliver our IT strategy to improve and optimize Endpoint infrastructure, implement Endpoint security solutions, improve Software delivery automation capabilities, implement remote support builds through Windows Autopilot and manage life cycle through Microsoft SCCM and Intune.
The successful candidate will have in depth knowledge in Endpoint infrastructure and management, Software delivery automation, Group polices and Intune device policies, Security solutions implementation and 4th line support experience. The role works closely with IT Customer success team, Information Security and Operations team and other key stakeholders contribute to the creation of long-term strategies and roadmaps.
Key duties and responsibilities include:

  • Responsible for maintaining the strong working relationship between Information Security and operations team

  • Ability to apply knowledge to delivery of project related deliverables such as high level and low-level diagrams

  • Assisting in solving Desktop issues (4th line support) by engaging internal owners and manufacturer support.

  • Robust knowledge on desktop projects for Security solutions implementation, office moves and deploying new modern Microsoft solutions to the group.

  • Design, delivery, and maintenance of Windows 10/11 standard builds ensuring the builds are patched and enhanced to meet IT standards

  • Using detailed knowledge of SCCM, Intune, Active Directory, Azure Active Directory, group policy, user profile management and security concepts to provide a compliant service

  • Using detailed knowledge of Virtual desktop, manage, enhance, and support the VDI estate

  • Using detailed knowledge of Microsoft 365, Intune, and collaboration solutions to deliver an improved end user experience

  • Using detailed knowledge of Microsoft E5 security features implementation, management, and response

  • Implement M365 Security features for EDR real-time continuous monitoring and collection of endpoint data with rules-based automated response and analysis capabilities

  • Design and delivery of Software though automation using Servicenow integration

  • Defining end user personalization and endpoint analytics with Aternity

  • Participation in projects, bringing technology roadmap expertise in the project planning and design phase, through the build and implementation phases

  • Contribution or ownership of the high-level designs (dependent on technology, scale, and overall requirement)

  • Creating low-level pattern or template designs and implementing technology defined in a low-level pattern or design

  • Monitor, maintain and optimize the Microsoft SCCM and Intune systems and environment to ensure performance efficiencies and optimization

  • Meet service level targets for Endpoint services relates to ISMS, ISO27001 and CE+

  • Successive improvement in delivering efficiency to the Endpoints and Server estate

  • Efficient communication of service activities to IT staff and business users., We put equality, diversity, and inclusion at the heart of our business, seeking to promote fair employment procedures and practices to ensure equal opportunities for all. We encourage individual expression in our workplace and are committed to creating an inclusive environment where everyone feels they can contribute.

    • Accessibility
    We want you to perform your best at every stage in the recruitment process. If you are disabled or need any support to enable you to apply or attend an interview, please contact us at reasonable.adjustments@mottmac.com and we will talk to you about how we can support you.
    Agile working
    Happy to talk Flexible Working and how we can support your responsibilities beyond the workplace.
    We offer some fantastic benefits including:
    Health and wellbeing
  • Private medical insurance for all UK colleagues.

  • Health cash plan to support you with every day health costs and treatments.

  • Access to Peppy, providing free support from menopause experts for all UK colleagues.

  • A variety of wellbeing support is available through our comprehensive wellbeing program, including access for you and your family.

  • Ability to flex your salary to opt into a wide range of health benefits, many of which can be extended to your family too.


    • Financial wellbeing
  • We match employee pension contributions between 4.5% and 7%.

  • Life assurance equal up to 4 x your basic salary, with an option to increase the level of cover to 6 x your salary.

  • Our income protection scheme provides a financial benefit, as well as absence and return to work support due to long-term illness or injury.

  • Flexible benefits, including increased life assurance cover, critical illness insurance, payroll saving and will writing.

  • As an independently owned business we share the financial success of the business with all our colleagues in various ways including annual bonus schemes.

    In depth knowledge in Microsoft endpoint management solutions SCCM and Intune

  • In depth knowledge in Active directory, group policies, Intune device policies and Azure Active directory groups and memberships

  • In depth knowledge in Endpoint security solutions like MS Defender for Endpoints (MDE), Defender Antivirus, Defender for Cloud apps integration, Endpoint Detection and Response, and Advanced hunting.

  • In depth knowledge in Azure cloud capabilities including Microsoft Graph and API integration

  • In depth knowledge in Printing, Print server estate management and Papercut solutions.

  • Windows 10 and certificates deployment and management

  • Strong knowledge in scripting language (PowerShell) for Software delivery automation

  • Knowledge of MDM and MAM conditional access policies to support mobile devices through Intune

  • Experience with Windows security patching processes, Anti malware, Encryption, and update compliance

  • Experience in configuration of VPN profiles, Windows Autopilot hybrid and Direct access

  • Problem management and leading problem resolution

  • Knowledge in Disaster recovery and Business continuity process


    • Desirable
  • Educated to bachelor's degree level, preferably in an IT or engineering related discipline.

  • Formal accreditation in ITIL v3, V4 or another best practice framework desired.

  • Significant experience in administrating, maintaining, and monitoring Microsoft SCCM, Intune (including Active Directory, Defender and Group Policies) systems and in an Enterprise environment

  • Training and certification in SCCM administrator, Intune administrator, M365 Security Administrator and Azure solution architect expert.

  • Training and certification in Printing and Print management solutions like Papercut.

  • Knowledge on 3rd party patching tools like PatchMyPC preferred

  • Knowledge and Experience in an enterprise-level LAN management, systems configuration, network directories, domain name services, authentication, email, security, and backup functions

  • Knowledge and Experience installing, configuring, and supporting Microsoft Windows operating systems for use in a network environment

  • Knowledge of TCP/IP, DHCP, and DNS network protocols and services


    • Personal Attributes
  • Passionate about technology and learning.

  • Ability to balance demands and priorities and think clearly under pressure.

  • Attention to detail and a focus on quality.

  • Excellent conflict resolution, communication, and collaboration skills. Logical and analytical approach to solving problems.



  • We're a global engineering, management, and development consultancy.

    • Our purpose is to improve society by considering social outcomes in everything we do, relentlessly focusing on excellence and digital innovation, transforming our clients' businesses, our communities and employee opportunities.
    A fundamental part of this is respecting each person's differences and striving to meet their needs.
    We are proud to be a one of Glassdoor's top employers to work for in the UK, as well as being recognised as a Top Inclusive Company in the UK.

  • A minimum of 33-35 days holiday each year, inclusive of public holidays and dependent on level, with the ability to buy or sell leave through our flexible benefits programme.

  • Holiday entitlement increased to a minimum of 35 days after 5 years' service.

  • Variety of employee saving schemes and discounts from high-street retailers.


    • Enhanced family and carers leave
  • Enhanced family leave policies, including 26 weeks paid maternity and adoption leave, and two weeks paid paternity/partner leave.

  • Our shared parental leave matches maternity leave meaning we pay up to 24 weeks at full pay.

  • Up to five additional days leave are provided for those with significant caring responsibilities, two of which are paid.


    • Learning and development
  • Primary annual professional institution subscription.

  • A broad range of opportunities to enhance both technical and soft skills through mentoring, formal training, and self-development options.


    • Networks, communities, and social outcomes
  • Join a wide range of groups including our Advanced Employee Networks which support our LGBTQ+, gender, race and ethnicity, disability, and parents/carers communities.

  • Make a difference within our communities through our social outcomes.