Key skills
PowerShellAnalyticsAzureAzure ADEntra IDZero Trust
About this role
Pearson is the world's lifelong learning company, dedicated to helping people realize their potential through learning. They are seeking an experienced Senior Windows Engineer to maintain and optimize a large-scale enterprise environment of approximately 20,000 Windows endpoints, focusing on endpoint management and user experience.
Responsibilities:
- Design, implement, and manage enterprise endpoint solutions using Microsoft Intune and related Microsoft Endpoint Manager technologies
- Administer and support a fleet of ~20,000 Windows devices across a distributed enterprise environment
- Lead Windows OS lifecycle management, including deployment, patching, upgrades, and security compliance
- Develop, maintain, and optimize advanced PowerShell scripts for automation, reporting, and operational efficiency
- Manage and enhance device configuration, compliance policies, and security baselines within the Microsoft ecosystem
- Monitor and improve endpoint performance and user experience using tools such as Nexthink
- Collaborate with security, networking, and infrastructure teams to ensure alignment with enterprise standards and policies
- Troubleshoot and resolve complex, escalated endpoint and OS-related issues
- Contribute to strategic initiatives such as Zero Trust, device hardening, and modern workplace transformation
- Document processes, standards, and architectural decisions
Requirements:
- 7+ years of experience in Windows engineering within large enterprise environments
- Strong expertise in Microsoft Intune (Endpoint Manager) and modern device management (MDM/MAM)
- Deep knowledge of Windows 10/11 administration, deployment, and troubleshooting
- Advanced PowerShell scripting skills, with a focus on automation and scalability
- Experience managing large device fleets (10,000+ endpoints preferred)
- Strong understanding of Microsoft 365, Azure AD (Entra ID), Group Policy, and hybrid identity environments
- Experience with endpoint monitoring and analytics tools (e.g., Nexthink or similar)
- Solid understanding of security best practices, compliance frameworks, and endpoint hardening
- Proven ability to operate independently and handle high-impact escalations
- Experience with Autopilot, Windows Update for Business, and application packaging/deployment
- Familiarity with co-management (ConfigMgr/SCCM and Intune) environments
- Knowledge of virtualization technologies (e.g., AVD, VDI)
- Experience working in globally distributed teams
- Relevant Microsoft certifications (e.g., Endpoint Administrator, Azure Administrator)