Job Description
Job Description – L3 Corporate IT Engineer (End User Computing)
Role Title
L3 Corporate IT Engineer – O365 | Active Directory | Azure AD (Entra ID) | Intune |
PowerShell | Imaging
Role Summary
We are seeking a highly hands-on Level 3 (L3) Corporate IT Engineer to support and lead
enterprise end-user computing and corporate IT services. This role requires deep expertise
in Microsoft 365, Active Directory, Azure AD (Microsoft Entra ID), Intune, Windows imaging,
and PowerShell automation. The L3 Engineer will act as the final escalation point for
corporate IT issues, define standards, drive automation, strengthen identity security, and
train and mentor L1/L2 support teams.
Key Responsibilities
Act as L3 escalation point for corporate IT / end-user computing issues
Administer and troubleshoot Microsoft 365 services (Exchange Online, Teams, OneDrive,
SharePoint)
Manage on-prem Active Directory and hybrid identity with Azure AD (Entra ID)
Design, implement, and support Azure AD features such as SSO, MFA, Conditional Access,
and device-based access
Design, deploy, and manage device management using Microsoft Intune
Own Windows device lifecycle including imaging, provisioning, rebuilds, and refresh
Develop and maintain PowerShell scripts for automation, reporting, and bulk operations
Implement endpoint and identity security controls including MFA, Conditional Access, and
device compliance
Lead endpoint standardization, patching, OS upgrades, and Autopilot initiatives
Create and maintain SOPs, runbooks, and end-user IT documentation
Train, mentor, and upskill L1/L2 corporate IT teams
Technical Skills – Required (Must Have)
Strong hands-on experience with Microsoft 365 administration
Strong Active Directory skills (users, groups, GPOs, DNS, hybrid identity)
Strong hands-on experience with Azure AD (Entra ID) including MFA, Conditional Access,
and SSO
Advanced PowerShell scripting for automation and operational efficiency – MUST
Strong experience with Microsoft Intune (device enrollment, compliance, configuration
profiles)
Hands-on experience with Windows imaging and provisioning (WDS, MDT, Autopilot)
Strong troubleshooting skills for Windows OS and end-user issues
Understanding of identity, endpoint security, and Zero Trust principles
Automation – Required & Good to Have
PowerShell automation for Azure AD, Intune, Active Directory, and Microsoft 365 –
REQUIRED
Microsoft Graph API experience (good to have)
Endpoint remediation and self-healing scripting
Basic reporting and automation for access reviews and compliance
Experience & Qualifications
7+ years of experience in Corporate IT / End User Computing roles
Proven L3 escalation and incident ownership experience
Strong experience managing Microsoft 365, Active Directory, and Azure AD environments
Hands-on Intune and Windows imaging experience
Strong documentation and training capability
Certifications (Nice to Have)
Microsoft 365 Certified: Administrator
Microsoft Endpoint Administrator (MD-102)
Microsoft Azure Administrator (AZ-104)
Microsoft Identity and Access Administrator (SC-300)
ITIL Foundation
