Microsoft Intune Policy Audit & Remediation Consultant
Microsoft Intune Policy Audit & Remediation Consultant
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
5-7years
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
- Perform a full discovery of the current Microsoft Intune (Endpoint Manager) environment: device enrolment compliance application deployments and Conditional Access.
- Assess the effectiveness and alignment of security policies including BitLocker Microsoft Defender ATP MDM/MAM and update ring configurations.
- Review and assess RBAC roles alerting mechanisms reporting and monitoring.
- Identify misconfigurations redundancies and risks due to policy conflicts or outdated practices.
- Compile a detailed audit report with risk analysis policy gaps and prioritised remediation recommendations.
- Develop and implement a remediation and optimisation plan based on audit findings.
- Streamline and standardise policies enforce naming conventions and optimise policy layering logic.
- Enhance Conditional Access and RBAC roles to reflect Zero Trust principles.
- Establish or refine monitoring dashboards reporting metrics and automated alerts.
- Deliver knowledge transfer sessions stakeholder briefings and handover documentation.
Requirements
- Microsoft 365 Certified: Endpoint Administrator Associate (MD-102) OR
- Microsoft Certified: Security Administrator Associate (SC-300)
- Extensive experience with Microsoft Intune (Endpoint Manager) and Azure AD.
- Proficiency in Mobile Device Management (MDM) Mobile Application Management (MAM) device compliance and configuration profiles.
- Deep understanding of Conditional Access RBAC and Zero Trust with Microsoft Defender BitLocker update rings and endpoint security baseline
- PowerShell scripting for reporting and policy automation (advantageous).
- Proven experience in conducting security/configuration audits in enterprise environments.
- Understanding of NIST CIS or Microsoft security baselines.
- Ability to link technical issues to business risk and recommend prioritised remediation actions.
- Strong interpersonal verbal and written communication skills.
- Ability to communicate technical concepts to non-technical stakeholders.
- Capable of producing clear documentation and delivering structured stakeholder presentations.
- Able to work independently and deliver within strict deadlines.
- Intune environment inventory and compliance baseline.
- Configuration gap analysis and risk assessment.
- Remediation and optimisation roadmap.
- Revised and newly implemented Intune policies
- Updated Conditional Access and RBAC configurations
- Enhanced monitoring dashboards and alerting rules
- Final audit report and executive summary presentation
- Knowledge transfer sessions and handover documentation
- Consultant must provide own laptop/tools with secure connectivity
- Availability to support approximately 100 hours over two defined project phases
- Flexibility to attend remote and in-person sessions as required
- Compliance with all client confidentiality data protection and security policies
Extensive experience with Microsoft Intune (Endpoint Manager) and Azure AD. Proficiency in Mobile Device Management (MDM), Mobile Application Management (MAM), device compliance, and configuration profiles. Deep understanding of Conditional Access, RBAC, and Zero Trust architecture. Familiarity with Microsoft Defender, BitLocker, update rings, and endpoint security baselines. PowerShell scripting for reporting and policy automation (advantageous).
Education
Certifications (Required): Microsoft 365 Certified: Endpoint Administrator Associate (MD-102) OR Microsoft Certified: Security Administrator Associate (SC-300)
Employment Type
Full Time
