Job Title: Endpoint & Automation Engineer

Location: UK, Remote
Department: Technology
Reports To: Head of Retail & Corporate IT
Job Type: Full-Time / Permanent

Role Overview

We are seeking a highly capable and detail-oriented Endpoint & Automation Engineer to join our growing Corporate IT team. This role blends traditional endpoint management with responsibility for designing and implementing IT automation to support operational efficiency, compliance, and scalability.

The successful candidate will manage the full lifecycle of end-user devices while automating key IT infrastructure tasks such as provisioning, compliance enforcement, patching, and reporting — helping reduce manual workloads and improve service delivery.

Key Responsibilities

Endpoint Lifecycle Management

• Design, implement, and maintain secure Windows/macOS base images (Golden Images).
• Automate device provisioning using Microsoft Intune Autopilot, Apple DEP, or similar tools.
• Manage patching policies, device encryption, and standardised configurations across all corporate and retail endpoints.
• Track asset lifecycle from procurement through decommissioning using inventory tools.

Security & Compliance

• Implement and maintain endpoint GPOs and compliance policies through Intune or MDM.
• Support DLP controls, device encryption, anti-virus enforcement, USB restrictions, and user access reviews.
• Help maintain compliance with regulatory standards including PCI-DSS and ISO 27001.

Infrastructure Automation (Automation Engineer Scope)

• Identify repetitive or manual infrastructure tasks and automate using PowerShell, Python, or other scripting languages.
• Design and maintain automation pipelines for user onboarding/offboarding, device enrolment, group membership management, patch scheduling, and reporting.
• Work with Azure DevOps, GitHub Actions or similar platforms to implement CI/CD pipelines for internal IT scripts and configuration policies.
• Build dashboards to visualise key metrics (compliance, patch status, device health).

Monitoring, Reporting & Support

• Develop health check scripts for endpoints to identify issues proactively.
• Provide reporting on patch compliance, update success, endpoint security status, and configuration drift.
• Act as final escalation point for endpoint or scripting issues not resolved by the Service Desk.
• Support incident management and root cause analysis for endpoint outages or anomalies.

Collaboration & Strategic Projects

• Collaborate closely with Systems, CyberSecurity, Service Desk, and Network teams to standardise and modernise endpoint and automation strategy.
• Assist with IT transformation projects such as JML process improvements, automation of approvals, and integration of service workflows.
• Drive innovation by introducing new tools and processes aligned with the business needs.

Essential Skills & Experience

• 3+ years in endpoint management or IT automation (Ansible).
• Hands-on experience with Microsoft Intune, Autopilot, and Azure AD.
• Proficiency in scripting (PowerShell essential, Python a plus).
• Familiarity with GPOs, Azure AD, O365, and Windows/macOS device security.
• Experience with GitHub, Azure DevOps or similar version-controlled automation frameworks.
• Strong understanding of IT infrastructure components including networking and identity.

Desirable Skills

• Experience with JAMF or mobile device management.
• Background in SCCM/MDT or modern endpoint deployment strategies.
• Experience integrating APIs (e.g. for Service Desk, HR systems, inventory tools).
• Understanding of security frameworks (e.g. NIST, ISO 27001).

Personal Attributes

• Automation-first mindset with a strong attention to detail.
• A continuous improvement advocate — always seeking to make processes faster and more reliable.
• Excellent written and verbal communication, with a strong documentation ethic.
• Comfortable working both independently and in collaboration with multi-functional teams.
• Pro-active approach to cost management, consistently seeking opportunities to reduce the total cost of ownership for endpoint devices through strategic procurement, lifecycle optimisation, and the implementation of efficient device management practices.
• Positive, solutions-oriented attitude with strong troubleshooting skills.

Why Join Us

• Influence the next-generation endpoint and automation strategy.
• Drive efficiencies through tooling, scripting, and systems standardisation.
• Be part of a transformation journey to secure and scale a modern IT corporate & retail estate.
• Training, support, and career path development within a high-impact team.