Cloud Service Desk Engineer

This is a fully remote position, open to applicants in United States.

📋 Description

• Design and uphold conditional access policies alongside device compliance requirements in Microsoft Entra ID and Intune, ensuring that cloud-connected endpoints comply with security posture standards before permitting network access.

• Facilitate Microsoft Intune enrollment processes for cloud-managed devices, which includes the deployment of configuration profiles and the enforcement of compliance.

• Establish and sustain passwordless authentication and hardware-backed credentials for privileged and sensitive accounts within cloud-connected environments.

• Assist in VDI connectivity engineering, guaranteeing that remote users on macOS and Windows platforms can securely access the virtual desktop environment.

• Oversee device enrollment and identity association workflows, ensuring precise asset inventory and user-to-device mapping across cloud and hybrid settings.

• Configure and maintain logging and telemetry for cloud identity and access events; ensure that audit trails are transmitted to enterprise SIEM platforms.

• Address intricate and escalated engineering tickets pertaining to cloud services, identity, and access; create runbooks and documentation for recurring issue patterns.

⛳️ Requirements

• A Bachelor's degree in Information Technology, Cybersecurity, or a related discipline is preferred.

• Educational qualifications may be waived based on professional experience at the discretion of the government.

• A minimum of 8 years of experience in Information Technology, Endpoint Engineering, or Cybersecurity.

• At least 6 years performing engineering (not help desk) functions within enterprise environments.

• Practical experience with Microsoft Entra ID and Intune for managing cloud identity and device compliance.

• Proven experience in engineering conditional access policies, role-based access, and identity-aware network access controls.

• Experience in supporting VDI environments and facilitating remote access connectivity for Windows and macOS users.

• Experience in implementing passwordless authentication and hardware-backed credentials in an enterprise context.

• Experience operating under formal change control, audit, and security governance processes.

• Microsoft certifications in identity, endpoint management, or cloud administration are desirable.

• Familiarity with Microsoft Sentinel for monitoring cloud identity and access telemetry.

• Knowledge of hybrid identity setups integrating on-premises Active Directory with Entra ID.

• Must possess or be eligible to obtain and complete government security screening and/or a Secret security clearance.

• An active Top Secret (TS) clearance is required.

• U.S. Citizenship is mandatory.

🏝️ Benefits

• Convenience/Concierge – Virtual health visits, commuter perks, pet insurance, and entertainment discounts that enhance your lifestyle.

• Development – Annual performance evaluations, tuition assistance, and internal career advancement opportunities to foster your growth.

• Financial – Generous 401(k) matching, life and disability insurance, and financial wellness resources to secure your future.

• Recognition – Annual awards, service anniversaries, referral bonuses, and peer-to-peer acknowledgments that highlight your accomplishments.

• Wellness – Comprehensive healthcare coverage, wellness initiatives, flu shots, and biometric screenings to promote your health.