Direct client management administrator - #9804956

KSN Technologies, Inc.

Date: 2 weeks ago
City: Dimondale, MI
Contract type: Contractor

Endpoint Privileged Management (EPM) Administrator

Dimondale, MI Hybrid Only Locals

Duration: 1 year

We are looking for the candidates who can work on W2.

Interview Process: Virtual Interview via MS Teams video. Please use laptop and be prepared so share screen if asked. 2nd round in-person interviews may take place.

Hybrid: Resource will be working a hybrid schedule. NO REMOTE ONLY OPTION. Will need to be onsite from day 1, two days a week (Tuesdays and Wednesdays in-office).

Local candidates within 2 hours of Dimondale, MI ONLY.

Top Skills & Years of Experience:

-Intune (Microsoft Endpoint Manager)

-Entra ID (Azure AD)

-Windows 10/11 configuration and management

- A minimum of 3 years of experience

We are seeking a skilled individual with Endpoint Privileged Management (EPM) experience. The ideal candidate will have a good understanding of endpoint privileged management, CyberArk EPM, Delinea EPM, Microsoft Intune EPM, Microsoft 365, and other related technologies. As the EPM Administrator, you will play a crucial role in managing and maintaining our organization's endpoint management infrastructure. As a Windows Endpoint Privilege Management Administrator, you will be responsible for implementing, managing, and maintaining the Endpoint Privilege Management (EPM) policies in the Intune console. You will work with Microsoft Intune to allow the organization's users to run as standard users without administrator rights and complete tasks that require elevated privileges. This includes application installs, updating device drivers, and running certain Windows diagnostics. Implement Local Administrator Password Solution (LAPS) to leverage Entra ID.

To be successful in this role, you should have a strong understanding of Endpoint Privilege Management and its role in Zero Trust security. You should also have experience with Microsoft Entra joined and Microsoft Entra hybrid joined endpoints, Microsoft Intune Enrollment and Microsoft Configuration Manager co-managed devices.


  • Design & implement Microsoft LAPS - local administrator password solution for windows.
  • Design & implement Microsoft Intune EPM Endpoint Privilege Manager solution for windows.
  • Configure, deploy, administer, troubleshoot, and manage Microsoft Intune EPM to support modern device management strategies.
  • Evaluate EPM use case, by application and draft migration to Intune EPM.
  • Review & repackage current applications to work on Intune EPM solution.
  • Draft technical, operational documents, along with use guide for each use case migration to Intune EPM solution.
  • Collaborate with Agency IT teams to ensure seamless integration of Intune EPM with other systems and applications.
  • Provide technical support to end-users for Intune-related issues and escalations.
  • Stay current with industry best practices and trends related to endpoint management and security.

Required skills / technologies:

  • CyberArk EPM (Endpoint Privileged Management)
  • Delinia EPM (Endpoint Privileged Management)
  • Intune EPM (Microsoft Endpoint Management)
  • Configuration & rollout EPM solution
  • Local Administrator Password Solution (LAPS)
  • Software Packaging, Installation, and Delivery
  • Entra ID (Azure AD)
  • Windows 10/11 configuration and management
  • Microsoft Active Directory Manager
  • Endpoint Privilege Management (EPM)
  • Workstation privileged access management

Additional good to have responsibilities/skills:

  • Administer and monitor privileged accounts, ensuring compliance with security policies and regulatory requirements.
  • Collaborate with IT and security teams to identify, assess, and mitigate security risks related to elevated privileges.
  • Design and enforce access control policies for privileged users and accounts.
  • Conduct regular access reviews and audits to ensure compliance with security standards.
Report this job
  • Dice Id: 10314943
  • Position Id: 8186080

How to apply

To apply for this job you need to authorize on our website. If you don't have an account yet, please register.