Microsoft Intune Automation Specialist
- Position Posted: February 3, 2025
- Microsoft Intune Automation Specialist
- Department of Foreign Affairs and Trade ACT, Canberra CBD, Hybrid
- Number of Positions: One (1)
Reference: | 1623 |
---|---|
Job Description: | Microsoft Intune Automation Specialist |
Australian Citizenship | Required |
Security Clearance Level Required: | NV1 |
Length of Contract: | 12 months |
Contract Extension Options: | 2 x 12 months |
The Cyber Security, Cloud and Networks Branch within the Information Management and Technology Division of DFAT requires the services of an ICT labour-hire resource to perform the role of Microsoft Intune Automation Specialist.
Key duties and responsibilities
The Microsoft Intune Automation Specialist will undertake the following tasks from within a multi-team environment:
-
- Examine the existing Intune policies and configuration, identify areas for improvement, develop a plan to resolve any existing issues and update Intune based on the plan.
- Analyse the use cases associated with the new endpoints that will be added to Intune.
- Develop automation scripts to support the use cases being proposed.
- Ensure Intune is leveraging relevant security systems
- Ensure Intune is integrated with the Department’s logging solution
- Develop an Intune support model.
- Manage the Windows Defender Application Control (WDAC) configuration via code.
- Develop a Role Based access control model for Intune and related technologies including:
-
-
- Discover and document role requirements for different lines of business areas.
- Automate the implementation of RBAC model.
- Build a process to improve and maintain the RBAC model over time as organisational needs change.
- Develop a RACI to capture the accountabilities and responsibilities of the platform, and consumers of the platform.
- Defender integration within the endpoint environment.
- SOPs that will allow 1st, 2nd and 3rd level tasks to be executed by delegated staff and will produce consistent results.
- Supporting the Cyber logging and monitoring use case development and implementation by liaison with Cyber Operations team.
-
-
- Develop a RACI for support in consultation with relevant stakeholders.
- Work closely with the operational area responsible for Intune to ensure they are aware of the proposed changes and are trained in how to create and maintain scripts once the solutions are transitioned into operations.
- Comply with organisations standards for code and release management.
Technical skills
The Skills Framework for the Information Age (SFIA) has been used to inform the requirements. In summary, DFAT seeks a candidate with a skillset that aligns with the following SFIA role category and skills set: Category: Development and Implementation / Subcategory: Systems Development / Skills: Systems Integration and Build (SINT) / Level: 6 Category: Change and Transformation / Subcategory: Change Planning / Skills: Organisational Capability Development (OCDV) / Level: 5
About the project
The Digital Uplift Program (DUP) is a multi-year initiative that will uplift the DFAT’s cyber security posture. The endpoint management tool that will be used to support the program is Microsoft Intune. Microsoft Intune will be used to manage the following four endpoints:
• Windows 11 SOE
• Specialist laptops
• Cloud PC
• Mobile devices The program needs to ensure that Intune is configured in a consistent manner that is easy to manage from an ongoing operational perspective.
Essential criteria
1. Proven experience in developing a support model for Intune for endpoint management in a large organisation.
2. Proven experience managing and configuring Intune in a large organization using Infrastructure as Code (IaC) techniques in a multi-team environment.
3. Proven experience in the automation of operational tasks to improve operational efficiency.
4. Proven experience developing an infrastructure as code driven Intune management solution for Windows and Mobile Device endpoints.
5. Develop automation to execute processes within and around the Intune environment including controlling Intune configuration as code.
6. Demonstrated ability to transfer knowledge on Intune and automation to existing staff that operate the MECM/SCCM based solution for Servers and Desktop devices.
Desirable criteria
1. Experience in driving the transition into service process including documentation.
2. Support the development of MDM capabilities utilising supporting technologies like Zscaler ZIA/ZPA or Microsoft Private Access or Apple Relay.
3. • A degree in IT. • Any training qualifications related to Microsoft Intune or other relevant Microsoft cloud-based technologies.
3 days in office + 2 days from home or as otherwise agreed at DFAT’s discretion.
Full response will be required by: | 14 February |
---|
We welcome applications from all sections of the community.