About this role

Department: Modern Workplace Engineering, Digital Workplace Engineering, Technology & Operations (T&O)

The Modern Workplace Engineering team is responsible for delivering next-generation end-user computing platforms that encompass the design, engineering, and implementation of sophisticated endpoint management technologies and solutions across Windows, Mac, and Mobile platforms at BlackRock, while collaborating with multi-functional teams to develop seamless digital workplace solutions aligned with the firm's goals. The team is dedicated to innovating and excelling by automating tasks, developing software applications and tools, continuously improving the services and processes, and ensuring consistency across all devices, ultimately improving security, and enhancing employee productivity and efficiency.

Responsibilities:

• Design and implement unified endpoint management solution for windows and mobile devices using Microsoft Endpoint Manager (MECM, Intune, Autopilot).

• Create hybrid workplace solution roadmap, architecture and implementation approach from traditional Windows OS imaging to SCCM/MECM/Autopilot based Windows OS management for both on-prem physical end points, VDI and cloud-based desktop.

• Work with Microsoft Intune/Autopilot environment including device enrolment, implementing, and configuring auto provisioning scenarios, configuring profiles, managing device access and compliance, application management, managing security etc.

• Analyze existing processes and develop migration strategy from traditional to modern device management in cloud without impacting any of services.

• Understand inhouse developed and traditional Windows OS build creation & maintenance processes thoroughly.

• Plan an Operating System deployment strategy using MECM/SCCM and Intune Autopilot to implement both imageless solution as well as hardware independent custom images to support multiple hardware types and OS architectures, perform Windows upgrades, driver management, and the certification of new hardware devices.

• Implement solutions using MECM/SCCM and Intune to build and maintain virtual desktops in Azure with custom images.

• Define and handle endpoint profiles throughout the enterprise from design to deployment and steady state.

• Enhance forward-looking standards and solutions using MECM/SCCM and Intune to simplify deployment of windows, security, and third-party updates in timely manner to all devices globally including on-prem, cloud-based as well as remote internet-based.

• Lead, maintain, and support Microsoft Endpoint Configuration Manager, Azure, and Intune infrastructure to for configuration changes, software updates, and system upgrades.

• Provide health and performance insights as well as trend analysis using Azure monitoring, endpoint analytics etc.

• Identify system problems and develop innovative solutions to improve processing efficiency and stability.

• Engage with cross functional teams in other technology initiatives and projects.

• Provide escalation support and collaborate with technology teams to troubleshoot issues and provide resolutions.

• Create supporting documentation for various audiences.

Qualifications:

• 10+ years of experience with end-user computing and infrastructure technical skills especially in the areas of Desktop, VDI, Remote Access, Windows OS Image Management, Endpoint Security, Application Packaging, Group Policy, Security Patching, Firmware and Device Drivers upgrade etc.

• 7+ years of experience in design, architecture, and implementation of Microsoft Endpoint Configuration Manager (MECM/SCCM), Azure, and Intune infrastructure.

• 7+ years of experience in end point design and management leveraging SCCM or MECM and Intune with proven experience in Windows OS deployment: in-place upgrade, OS refresh and replace, including VDI and DaaS (Citrix, Microsoft) solution implementation, OS Imaging for VDI environment, cloud desktop, user profile and thin client engineering.

• Experience with traditional Windows build creation and OS deployment processes.

• Experience with Windows Autopilot as a modern OS deployment solution with proven understanding of the mechanics and processes for developing end to end provisioning processes through MS Intune including images, software deployment, and patching.

• Experience with co-management (Intune + SCCM / MECM/SCCM) as part of modern device management transformation.

• Understanding of Azure cloud platform, Microsoft 365, cloud management software products like Terraform or Nerdio, Azure Image Library, Active Directory concepts and secure token services such as ADFS, Certificates etc., network protocols/services and network infrastructure.

• Proficiency with automation via PowerShell, VBScript, WMI scripting, or equivalent software development skills and experience using source code tools to store code, scripts, and configurations (e.g., Git, GitHub, etc.)

• Exposure to SCCM reporting integration with Power BI as well as Intune reporting automation using Graph API.

• Experience with Microsoft Graph, Azure Alerts and Monitoring, Endpoint Analytics.

• Ability to multi-task and be creative and innovative in a multifaceted, fast paced team environment.

• Experience as solution lead managing projects, solution roadmap, POC and leading initiatives with minimal direction throughout the project lifecycle.

• Flexible to attend late night meetings regularly and work during US business hours as the need arises.

Our benefits

To help you stay energized, engaged and inspired, we offer a wide range of benefits including a strong retirement plan, tuition reimbursement, comprehensive healthcare, support for working parents and Flexible Time Off (FTO) so you can relax, recharge and be there for the people you care about.

Our hybrid work model

BlackRock’s hybrid work model is designed to enable a culture of collaboration and apprenticeship that enriches the experience of our employees, while supporting flexibility for all. Employees are currently required to work at least 4 days in the office per week, with the flexibility to work from home 1 day a week. Some business groups may require more time in the office due to their roles and responsibilities. We remain focused on increasing the impactful moments that arise when we work together in person – aligned with our commitment to performance and innovation. As a new joiner, you can count on this hybrid model to accelerate your learning and onboarding experience here at BlackRock.

About BlackRock

At BlackRock, we are all connected by one mission: to help more and more people experience financial well-being. Our clients, and the people they serve, are saving for retirement, paying for their children’s educations, buying homes and starting businesses. Their investments also help to strengthen the global economy: support businesses small and large; finance infrastructure projects that connect and power cities; and facilitate innovations that drive progress.

This mission would not be possible without our smartest investment – the one we make in our employees. It’s why we’re dedicated to creating an environment where our colleagues feel welcomed, valued and supported with networks, benefits and development opportunities to help them thrive.

For additional information on BlackRock, please visit @blackrock | Twitter: @blackrock | LinkedIn: www.linkedin.com/company/blackrock

BlackRock is proud to be an Equal Opportunity Employer. We evaluate qualified applicants without regard to age, disability, family status, gender identity, race, religion, sex, sexual orientation and other protected attributes at law.