10544 – Client Device Engineer (endpoint engineering & support)

Irvine, CA

Full Time

HCA Service

Experienced

10544 – Client Device Engineer
Location – Irvine, CA

ABOUT US

Hyundai AutoEver America (HAEA), a subsidiary of Hyundai and Kia Motor Companies, provides premier IT services across to the Hyundai Motor Company and its affiliate brands across North America.

As an HAEA employee, you will provide dedicated support to Hyundai Capital America, the financial services arm of Hyundai Motor Group in the U.S. HCA provides auto financing, leasing, and related financial products for Hyundai, Kia, and Genesis vehicles.

WHAT YOU WILL BE DOING
We are in search of a Client Device Engineer (Workstation Management Engineer) to deliver enterprise-wide endpoint engineering, support, leveraging Microsoft Endpoint Manager (MECM/SCCM), Microsoft Intune, Windows 11, PowerShell scripting, and Virtual Desktop Infrastructure (VDI) solutions. This role focuses heavily on Patch management, automation, compliance, system health analytics, vulnerability remediation, and enhance in end user experience with service excellence.
The Engineer must work independently or collaboratively to manage incidents, participate in projects, and system lifecycle processes while effectively communicating complex technical topics to non-technical audiences. A strong understanding of CIS Benchmarks, vulnerability remediation, and regulatory compliance (including HIPAA, SOX) is critical. Additional roles & responsibilities will include but not necessarily be limited to the following:

Endpoint Management & Patching

Engineer and maintain Microsoft Endpoint Manager (MECM/SCCM) and strong experience in Intune.
Deploy, manage, and support Windows 11 devices including WIM imaging, Autopilot provisioning, Patch Management, Configuration Profiles, and Compliance Policies.
Support cloud-attached device management and Azure AD Hybrid Join configurations.
Maintain system health, monitor endpoint compliance, and leverage Endpoint Analytics for optimization.

Automation and Scripting

Develop and maintain PowerShell scripts for deployment automation, system reporting, compliance, and endpoint management tasks.
Automate patching, software deployment, compliance reporting, and system health monitoring.

Security, Compliance, and Vulnerability Remediation

Implement and maintain device hardening standards based on CIS Benchmarks.
Remediate security vulnerabilities identified through regular security assessments.
Support and enforce regulatory compliance including HIPAA, SOX, and other applicable policies.
Participate actively in vulnerability management programs, audits, and regulatory assessments.
Software center software testing and release.

Monitoring, Health, and Availability

Ensure endpoint and server system availability, performance, and security through proactive monitoring and remediation.
Monitor ServiceNow ITSM queues to address incidents, changes, and service requests efficiently within SLA targets.
Utilize System Health Analytics and Endpoint Analytics dashboards to identify and fix emerging issues.

ITSM

Log, update, and resolve incidents, changes, and service requests within ServiceNow.
Track service tickets and proactively manage SLA performance and adherence.
Document root cause analyses, solutions, and technical procedures accurately in ServiceNow.

Project Participation and Execution

Participate in project planning, task execution, and post-implementation reviews.
Track software lifecycle (EOL), ensuring timely updates and system migrations.
Identify, document, and implement system changes following Change Control Board (CCB) processes.

File Share and Permissions Management

Manage and troubleshoot file shares, NTFS permissions, and Active Directory security groups.
Audit and optimize file system permissions to ensure data security and access controls.

Strategy Development

Collaborate with technical and leadership teams to introduce technology enhancements, automation, and security improvements.

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.

WHAT WE REQUIRE FROM YOU

Bachelor’s degree in Computer Science, Information Systems, or equivalent experience.
10-15 years of IT experience focused on endpoint engineering, security hardening, patch management, automation, and compliance.
Advance MECM experience is required.
Strong experience with Active Directory and OU structure along with GPO management.
Strong experience with Windows 10/11 enterprise deployment and support Advanced Microsoft Endpoint Manager (MECM/SCCM) and Microsoft Intune skills
Extensive PowerShell scripting and task automation experience
Advanced ServiceNow incident, change, and request management experience
Deep understanding of CIS hardening standards, vulnerability remediation, and compliance frameworks (HIPAA, SOX)
Experience with System Health Monitoring tools and Endpoint Analytics
Experience with managing file share permissions and access controls in AD environment
Strong project participation, tracking, and designated task execution skills
Ability to explain complex technical concepts to non-technical audiences clearly and effectively coordination and SLA management experience

CERTIFICATIONS

Microsoft Certified: Modern Desktop Administrator Associate

Microsoft Certified: Endpoint Administrator Associate
Microsoft Certified: Security, Compliance, and Identity Fundamentality v4 Certification (preferred)
Microsoft Intune Endpoint Management experience and certificate highly preferred.

LATEST TECHNOLOGIES FOCUSED:

Microsoft Endpoint Manager (MECM/SCCM + Intune)
Windows Auto Patch
Windows 11
PowerShell scripting and automation
Windows Autopilot
Azure Active Directory, Conditional Access
Endpoint Analytics
ServiceNow ITSM
CIS Security Benchmarks and Compliance Management
System Health and Monitoring Tools

Salary Range - $96,550 - $138,061

Apply for this position

Required*

Apply with Indeed

First Name*

Last Name*

Email Address*

Phone*

Address

Resume*

We've received your resume. Click here to update it.

Attach resume or Paste resume

Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or Paste resume

Paste your resume here or Attach resume file

Are you authorized to work for any employer in the United States?*

Will you now or at any point in the future require or request Hyundai AutoEver to commence or support ("sponsor") an immigration case in order to employ you (for example, H-1B, OPT, TN, F1 or other employment-based immigration case)? This is sometimes called "sponsorship" for an employment-based visa status, and sponsorship requirements can change over time.*

What is your desired base compensation?*

What is your interview availability?*

When is your earliest start date?*

Have you ever interviewed with Hyundai previously?*

What is the reason for leaving your current/last position?*

This role requires the ability to work in the office. Will you have reliable means of transportation to get to and from our offices?*

If not local, would you be open to relocation to be closer to work on-site?*

Human Check*

Submit Application

We are looking for talented individuals to grow with us personally and professionally and to help us make history.

10544 – Client Device Engineer (endpoint engineering & support)

Apply for this position