We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
Suffolk Construction jobs

Senior Endpoint Engineer

Suffolk Construction
life insurance, vision insurance, paid time off, 401(k)
United States, Massachusetts, Boston
65 Allerton Street (Show on map)
Mar 12, 2026

Senior Endpoint Engineer




ID
2026-10711
Job Location : Location
US-MA-Boston
 Type
Regular Full-Time
 Category/Department
IT


Overview

About Suffolk

Suffolk is a national enterprise that builds, innovates, and invests. We provide value across the entire project lifecycle through our core construction management services and complementary business lines in real estate investment, design, self-perform construction, and technology start-up investment (Suffolk Technologies). By integrating data, artificial intelligence, and advanced technology through our Seamless Platform, we connect design, construction, and operations to deliver smarter, more predictable results and redefine how America builds.

Suffolk - America's Contractor - is a national company with more than $9 billion in annual revenue, 3,000 employees, and 17 offices, including Boston (headquarters), New York City, Miami, West Palm Beach, Tampa, Estero, Dallas, Los Angeles, San Francisco, San Diego, Las Vegas, Herndon, U.S. Virgin Islands, and other key markets. Suffolk manages some of the most complex and transformative projects in the country, serving clients across healthcare, life sciences, education, gaming, aviation, transportation, government, mission critical, and commercial sectors. Suffolk is privately held and is led by founder, chairman and CEO John Fish. Suffolk is ranked #8 on ENR's list of "Top CM-at-Risk Contractors." For more information, visit www.suffolk.com and follow Suffolk on Facebook, Twitter, LinkedIn, YouTube, and Instagram.

At Suffolk, we believe that our total rewards program should offer you and your family the support you need when it matters most. That's why we have created a program that provides employees with access to a wide variety of options that can be personalized to support you and your loved ones physically, emotionally, and financially.

Benefits include, competitive salaries, auto allowances and gas cards for certain roles, access to market leading medical and emotional and mental health benefits, dental, and vision insurance plans, virtual care options for physical therapy and primary care, generous paid time off, 401k plan with employer match and access to expert financial resources, company paid and voluntary life insurance, tax deferred savings accounts, 10 backup daycare days each year, short- and long-term disability, commuter benefits and more. For more information, clickhere.

Suffolk Construction is seeking an experienced Endpoint Engineer to support and evolve our modern workplace environment across corporate offices, regional teams, and active construction project sites. This role is responsible for administering Microsoft Intune for both Windows and macOS endpoints, ensuring devices are secure, compliant, and reliable while supporting a highly mobile and project-driven workforce. The position involves managing endpoint hardware standards and lifecycle, planning and executing hardware refreshes, and monitoring endpoint health and compliance to resolve complex issues.



Responsibilities
    Administer and optimize Microsoft Intune for Windows 10/11 and macOS endpoints across Suffolk's enterprise
  • Design, deploy, and maintain device configuration profiles, compliance policies, and endpoint security baselines
  • Manage device enrollment strategies including Windows Autopilot and Apple Automated Device Enrollment (ADE/DEP)
  • Package, deploy, and maintain applications required for corporate and field users (Win32, PKG, DMG, LOB apps)
  • Support secure access to Suffolk systems using Azure AD (Entra ID) device identity and Conditional Access
  • Partner with Information Security to implement and enforce endpoint security controls (BitLocker, FileVault, Defender, Compliance Policies)
  • Manage OS updates, feature releases, and patching strategies for Windows and macOS devices
  • Own endpoint hardware standards and lifecycle, including device specifications, model selection, and design for Windows and macOS laptops
  • Partner with business units, field teams, and IT stakeholders to ensure endpoint hardware aligns with role-based job requirements, performance needs, and construction-site realities
  • Identify opportunities to integrate AI driven capabilities into the endpoint engineering model, including device health monitoring, remediation, analytics, and operational efficiency
  • Lead hardware refresh planning, including evaluation, vetting, and hands-on testing of new laptop models to ensure compatibility with Intune, security controls, and required applications prior to deployment
  • Partner with IT, Security, and Service Delivery teams to evaluate and adopt AI assisted tools and workflows that enhance endpoint reliability, compliance, and support outcomes
  • Monitor endpoint health, compliance, and deployment success; troubleshoot complex endpoint issues
  • Provide tier-3 escalation support for endpoint-related incidents and problems
  • Create and maintain technical documentation, standards, and SOPs for endpoint management
  • Participate in modernization initiatives such as Zero Trust, cloud-first device management, and endpoint automation


Qualifications

Required Qualifications

  • 8+ years of expertise managing Windows and macOS endpoints in an enterprise environment.
  • Hands-on experience administering Microsoft Intune / Endpoint Manager in a production environment
  • Strong knowledge of Windows 10/11 and macOS administration
  • Experience with Azure Active Directory (Entra ID) device join, hybrid join, and identity concepts
  • Familiarity with endpoint security best practices in regulated or security-conscious environments
  • Expertise in packaging and deploying applications across Windows and macOS
  • Strong troubleshooting skills with the ability to work independently in a fast-paced environment
  • Excellent written and verbal communication skills

Preferred Qualifications

  • Expertise in supporting a highly mobile and remote workforce.
  • PowerShell (Windows) and Bash (macOS) scripting experience
  • Expertise with Windows Autopilot and Apple ADE/DEP
  • Experience with Tanium endpoint management a plus
  • Strong knowledge of NIST/CIS endpoint security standards, Conditional Access, and Zero Trust principles
  • Microsoft certifications (MD-102, MS-102) or Apple certifications
  • Demonstrated experience in integrating Intune with third-party tools (MDM, IAM, security, or asset management platforms)

Key Competencies

  • Enterprise Endpoint Lifecycle Management
  • Security-first mindset with practical user empathy
  • Cross-platform (Windows & macOS) expertise
  • Automation and continuous improvement
  • Collaboration across IT, Security, and Operations teams
  • Ability to support a geographically distributed workforce


Working Conditions

While performing the duties of this job, the employee is regularly required to sit for long periods of time; talk or hear; perform fine motor, hand and finger skills in the use of a keyboard, telephone, or writing. The employee is frequently required to stands; walk; and reach with arms and/or hands. Specific vision abilities include close vision, distance vision, depth perception and the ability to adjust focus. The employee will spend their time in an office environment with a quiet to moderate noise level. Job site walking.



EEO Statement

Suffolk provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, pregnancy or maternity, national origin, citizenship, genetic information, disability, protected veteran, gender identity, age or any other status protected by law. This policy applies to recruiting, hiring, transfers, promotions, terminations, compensation, benefits, and all other terms and conditions of employment. Suffolk will not tolerate any unlawful discrimination toward, or harassment of, applicants or employees by anyone at Suffolk, or anyone working on behalf of Suffolk.



Compensation Information

The expected salary range for this position (Senior Endpoint Engineer) in US-MA-Boston is between $133,000 and $186,000 USD. This represents the typical salary range for this position and is just one component of Suffolk's total compensation package. Actual salaries may be based on several factors including, but not limited to, skill set, experience, education and other qualifications. Suffolk offers a comprehensive benefits package as part of its overall compensation strategy. Salary ranges may differ by geography and are reviewed regularly to reflect market trends.



Connect With Us!
Not ready to apply? Please submit your resume and/or contact information to Connect with us for general consideration.
Applied = 0
MORE JOBS LIKE THIS

(web-6bcf49d48d-kx4md)