We are looking for a Security & Platform Engineer (Windows Infrastructure) to join our Windows Infrastructure team. The ideal candidate will have strong foundations in security engineering and experience working with Microsoft Azure, Entra ID, Microsoft 365, Intune, and Windows 10/11 in an enterprise environment.
Requirements
- Design, optimise, and enhance a highly available, scalable, and secure Windows-based platform across Microsoft Azure, Microsoft 365, Intune, and Citrix VDI
- Own and evolve the Citrix DaaS / Virtual Apps and Desktops platform, ensuring performance, availability, and security requirements are met
- Drive standardisation and platform hardening across Windows 10/11, VDI images, and cloud-hosted workloads
- Monitor and improve performance, reliability, and cost-effectiveness across Azure, Citrix, Microsoft 365, and Intune
- Act as the primary security point of contact for Windows and end-user platforms, partnering closely with Security stakeholders
- Embed secure-by-design principles into Windows, cloud, identity, and VDI platform engineering
- Implement and maintain endpoint and identity security controls, including Intune security baselines/configuration profiles, Conditional Access, Entra ID security controls, and device compliance/posture enforcement
- Implement Windows hardening standards using Group Policy, Intune, CIS/Microsoft security baselines, and privileged access controls
- Partner on vulnerability remediation, secure configuration, endpoint/identity/VDI incident response support, and audit/compliance requirements
- Ensure Windows Update, patching, and lifecycle management meet security and operational standards
- Develop and maintain automation and infrastructure-as-code using PowerShell, Terraform, ARM templates, and related tooling
- Automate build, configuration, compliance, and validation of Windows and Citrix platforms
- Reduce manual operations through repeatable, secure, and auditable engineering practices
- Provide senior-level troubleshooting across Windows, Azure, Citrix, identity, and endpoint platforms; act as an escalation point for complex issues
- Produce and maintain technical documentation, architecture designs, and operational runbooks
- Evaluate and recommend technologies and approaches to improve security, resilience, and scalability
Benefits
- Initiatives and programs to enable employees achieve a healthy work-life balance
- Professional achievement and development opportunities
