SC Cleared Microsoft Endpoint Engineer

We are recruiting for a SC Cleared Microsoft Endpoint Engineer on contract to work for our client based in Derby on contract who specialise in Defence.

We are recruiting for someone who specialises in creating and managing OSD (Operating System Deployment) task sequences using Microsoft Endpoint Configuration Manager (MECM).

The role involves designing, testing, and deploying Windows builds across the enterprise environment, ensuring devices are secure, standardized, and optimized with the required applications and configurations.

Please note for this role our client requires current SC only candidates who are British Nationals.

Overview

As an MECM OSD (Operating System Deployment) Specialist, the candidate will design, build, and manage automated deployment solutions for Windows operating systems across enterprise environments. The role ensures end-user devices are delivered quickly, securely, and with consistent configurations, reducing setup time and supporting business productivity.

Key Responsibilities

OSD Build Creation & Management

Develop and maintain task sequences in MECM for automated Windows deployment.

Create and update custom WIM (Windows Imaging) files with drivers, patches, and configurations.

Standardize builds across laptops, desktops, and virtual machines.

Application & Driver Integration

Package and integrate business-critical applications into builds.

Manage driver packages for multiple hardware models (Dell, HP, Lenovo, etc.).

Ensure compatibility with BIOS/UEFI, TPM, BitLocker, and Secure Boot.

Testing & Quality Assurance

Validate OSD builds in test environments before production release.

Troubleshoot task sequence failures, driver issues, and software conflicts.

Document build processes and maintain change logs.

Patch & Security Compliance

Integrate monthly Windows updates into OSD images.

Apply security baselines and group policies for compliance.

Coordinate with InfoSec to harden images against vulnerabilities.

Leverage PowerShell Scripting to streamline deployment tasks.

Automate repetitive steps like application installs, registry tweaks, and system configurations.

Provide documentation and training for troubleshooting OSD deployments.

Collaborate with infrastructure and cloud teams for hybrid device management (Intune/Autopilot).

Skills & Tools

Microsoft Endpoint Configuration Manager (MECM/SCCM) - OSD, Task Sequences, Application Packaging, Reporting

Windows Deployment - Imaging, PXE boot, MDT integration

Scripting - PowerShell, Batch scripting

Device Management - Driver management, BIOS/firmware updates, BitLocker, TPM

Testing & QA - Troubleshooting logs (smsts.log, dism logs), build validation

This is an umbrella contract, the role is Inside IR35