M365 Intune Engineer (GC/SW)

The Intune Engineer is responsible for the design, deployment, and management of Microsoft Intune (Endpoint Manager) across the enterprise environment. This role ensures that all corporate and BYOD devices are secure, compliant, and aligned with organizational policies, while delivering a seamless end-user experience across Windows, iOS, and Android platforms.

In addition, familiarity with Exchange Online and on-premises Exchange will be advantageous to support integration points, mail client configurations, and related email security controls such as SPF, DKIM, and DMARC.

• Design, configure, and maintain Microsoft Intune policies, profiles, and compliance baselines for Windows, macOS, iOS, and Android devices.
• Deploy and manage applications via Intune.
• Support Windows Autopilot, hybrid join, and Entra ID join deployments.
• Maintain configuration baselines (BitLocker, LAPS, Firewall, etc.) and ensure continuous device compliance.

• Provide operational support for Exchange Online and on-premises Exchange environments as part of the Messaging team.
• Assist with mail flow, transport rules, and client access policies as they relate to device compliance.
• Understand and help maintain email authentication configurations (SPF, DKIM, DMARC) and message hygiene.

• Monitor enrollment, compliance, and device health dashboards.
• Automate operational workflows using PowerShell.
• Maintain documentation, SOPs, and configuration baselines.
• Provide Level 3 support for escalations related to device management, Autopilot, or Exchange/Intune integration issues.

• Participate in endpoint modernization initiatives, including migration from on-premises to cloud management.
• Support enterprise programs such as zero-trust enablement, passwordless authentication, and BYOD adoption.
• Test new Intune releases and evaluate impact on enterprise configurations.
• Collaborate with architects to design future-state endpoint and messaging strategies.

• More than 5 years experience in endpoint management and/or messaging support.
• Strong hands-on knowledge of Microsoft Intune (Configuration Profiles, Compliance, App Deployment).
• Strong hands-on knowledge of Entra ID Conditional Access and Device Join Types (Hybrid, Entra, Autopilot).
• Strong hands-on knowledge of Exchange Server (2016/2019) and Exchange Online administration basics.
• Strong hands-on knowledge of SPF, DKIM, DMARC, and email authentication mechanism.
• Strong hands-on knowledge of PowerShell scripting for automation and troubleshooting.
• Strong hands-on knowledge of Experience managing WinOS, iOS, or Android devices in Intune.
• Microsoft Certified: 1) Endpoint Administrator Associate, 2) Microsoft Certified: Modern Desktop Administrator Associate and 3) Administrator Expert.
• Strong analytical and troubleshooting abilities.
• Collaborative mindset and ability to work across teams.
• Detail-oriented, self-driven, and process-focused.
• Effective documentation and communication skills.
• Working location at Seletar - hybrid work arrangement.