At Parchment, we pride ourselves on a positive company culture and working environment. By working at Parchment you will get an opportunity to work with our highly talented international team and be part of our exciting growth story. Parchment is transforming the way people’s qualifications are certified and used around the world. And helping learners turn credentials into opportunities
We’re seeking a highly skilled Sr System Administrator with deep expertise in InTune endpoint management, Azure, Powershell/scripting, and networking (Cisco Meraki) to become a part of our globally distributed IT team. Reporting to the Director of Corporate IT, the ideal candidate will have 8+ years of experience engineering, implementing, and managing cross-departmental processes, with a proven record of project ownership and delivery. The person who occupies this role will be a domain expert in Azure, Azure AD, endpoint management (Windows InTune and Defender), and corporate software systems management (SaaS/installed). The person in this role will partner with the Security Operations Team on compliance-focused security initiatives (SSO, MDM, BYOD) If you’re passionate about technology and thrive in a challenging environment where you can really make a difference, we encourage you to apply for this exciting opportunity to join our growing team.
Parchment is roughly 50/50 split between MacOS and Windows laptops. We use Google Workplace as our primary productivity suite. We use the following SaaS tools – Slack, Zoom, Jira, Confluence, TeamViewer, Netsuite, Office 365,
This is a remote position, with limited travel. If located in the Phoenix AZ or Cincinnati OH area, occasional office visits would be encouraged.
Responsibilities:
- Configures and maintains endpoint management systems and MDM Solutions for Windows, MacOS, iOS, and Android devices.
- Works with Security Operations to develop standardized deployment configurations and automated enrollment in MDM platforms
- Oversees windows PC configurations, and compliance, corresponding with operating system releases, hardware manufacturer driver and BIOS updates
- Directs and oversees Application Deployment Packages, configures, installs, and documents software deployments to Windows and Mac OS endpoint devices, based on established designs and standards.
- Ensure compliance with company policies, procedures, and standards for endpoint infrastructure
- Creates and maintains configuration profiles for endpoints to enforce baseline security standards. (In conjunction with compliance policies and Conditional Access Policies)
- Works closely with IT & Security to understand and enforce standards, detect configuration drift, and remediate vulnerabilities on all managed endpoints in compliance with applicable enterprise policies.
- Performs configuration and change management activities in accordance with formal ITSM processes established for the department.
- Collaborates with other members of the Infrastructure team and departmental IT teams to discover new areas to automate & improve efficiency of operations.
- Oversees and maintains Companywide SDWAN (Cisco Meraki) network interconnecting all corporate offices and sites, as well as corporate VPN for endpoint connectivity.
- Acts as a point of escalation for both internal customers (e.g., Enterprise Applications) and departmental issues and incidents.
- Leverages Powershell, scripting and other resources, for configuration, remediation, and reporting, to give the team more visibility into device configuration and status.
- Follows existing and recommends new processes, structures, and systems with a focus on simplification and optimization.
- Creates and maintains documentation for support operations.
- Performs related work as required
Required Knowledge
- Expert in Endpoint services with Microsoft Intune and client management platforms such as JAMF & JAMF Connect
- Expert in Azure, Azure AD, Defender, SSO and related security strategies
- Well-versed in Windows 11/10, Mac OS and Linux
- Proven experience in Cisco Meraki SDWAN / WAP / Switching / Security
- Expert in Networking best practices – DNS, DHCP, Routing, VLANs,
- Strong in monitoring, managing, and troubleshooting systems, servers, and mobile devices.
- Administration experience or certification in the following tools: Azure, Google Workplaces, Slack, Jira
- Experience with Zero Trust corporate infrastructure
- Expertise in automation / scripting / APIs – PowerShell required
- Experience working as part of a globally distributed IT team
- Experience with Change Management, Asset Management, and Active Directory GPO / user account management
- Strong problem-solving and analytical skills, with the ability to troubleshoot complex technical issues
- Excellent communication and interpersonal skills, with the ability to work collaboratively in a team
- Proficient working in a fast-paced Agile environment
Perks & Benefits:
- Salary: $100,000 – $130,000
- Comprehensive Health Package: Medical, Dental, and Vision
- FSA & HSA program
- 401K company match
- 12 Paid Holidays
- PTO – 19 days for 1st year (increases with tenure)
- 6 weeks of Paternity Leave
- Work-from-home equipment provided!