M365 Endpoint and Identity Administrator

SOLV Energy is a leading provider of infrastructure services to the power industry, designing, building and maintaining utility scale solar, battery storage and high voltage substation projects nationwide.

Job Description Summary:
The M365 Endpoint & Identity Administrator is responsible for managing and maintaining the design, configuration, and operational integrity of SOLV Energy's Microsoft Intune environment and the broader Microsoft 365 platform (Entra ID, Teams, SharePoint, OneDrive). This role owns Mobile Device Management (MDM), endpoint patch management, and configuration policy authoring across the Windows and macOS and is accountable for executing all endpoint changes through SOLV Energy's formal IT change management process.


This role is hybrid with regular in office presence in San Diego, CA, Edison, NJ or Bend, OR. Specific location details and expectations will be discussed during the interview process.

Job Description:

*This job description reflects management's assignment of essential functions; it does not prescribe or restrict the tasks that may be assigned


Position Responsibilities and Duties:

• Own the configuration, health, and roadmap of Microsoft Intune as SOLV Energy's primary MDM platform, including device enrollment, compliance policies, configuration profiles, and endpoint security baselines across Windows and macOS
• Author and maintain Intune configuration profiles, security baselines, and Settings Catalog policies, including Defender for Endpoint, BitLocker, FileVault, Attack Surface Reduction rules, tamper protection, and account lockout
• Design and operate Windows Autopilot deployment profiles, Enrollment Status Page configuration, Autopilot device groups, and Entra-joined provisioning workflows for new and re-provisioned endpoints
• Manage macOS enrollment, configuration, and compliance through Intune, including FileVault and device-pinned Conditional Access scenarios for managed and contractor-owned hardware
• Build and maintain Intune application deployment packages, including detection rules, requirement rules, assignment scoping, and supersedence relationships
• Own the enterprise endpoint patch management program across Windows (Microsoft Autopatch / Intune update rings) and macOS (Intune update policies), including ring design, pilot testing, production rollouts, deferral policies, and compliance reporting
• Manage third-party application patching through Patch My PC (PMPC) Cloud, including publishing critical applications, enforcing automatic updates, configuring user-context vs system-context deployments, and triaging/remediating patch failures
• Lead Conditional Access policy design and operation in partnership with Cybersecurity, including device-compliance, app-protection, sign-in risk, and named-location policies
• Drive CVE remediation efforts for endpoints, including OS, driver, and firmware updates (e.g., Dell ControlVault, Dell Command Update, Apple Rapid Security Response), in coordination with Cybersecurity on vulnerability prioritization
• Build and maintain executive-level patch compliance, device posture, and Intune health dashboards to support leadership visibility, SOX ITGC evidence, and audit readiness
• Author and submit change management requests in Freshservice for all endpoint configuration, policy, and patching changes, including risk assessment, test evidence, rollback plan, and communication plan
• Participate in the Change Advisory Board (CAB), presenting changes for review and securing approval prior to any production deployment.
• Pilot all Intune policy, Autopilot profile, and patch ring changes against a defined test group before broad release; validate rollback procedures
• Develop and maintain PowerShell and Microsoft Graph automation for Intune reporting, policy auditing, bulk device operations, and lifecycle tasks
• Collaborate with Cybersecurity, Infrastructure, and Service Desk teams to maintain a secure, compliant, and supportable end-user computing environment
• Develop and maintain SOPs and runbooks for recurring operational processes such as Windows feature updates, monthly patch cycles, Autopilot onboarding, macOS enrollment, and incident response for endpoint outages
• Support M&A integration activities for the Microsoft 365 and endpoint workstream, including tenant migrations, Intune policy alignment, and Autopilot onboarding for acquired entities
• Monitor and respond to outages, trends, and global issues affecting the Microsoft 365 stack and managed endpoint fleet
• Stay current on Microsoft Intune, Entra ID, Defender for Endpoint, and modern endpoint management roadmaps, evaluating new capabilities for fit within SOLV Energy's environment

Minimum Skills or Experience Requirements:

• Bachelor's degree in Information Technology, Computer Science, or equivalent experience
• 5 years minimum experience as a M365 System Administrator or equivalent combination of experience and education
• Knowledge of major Microsoft cloudbased systems including Entra ID, M365, InTune, AutoPilot, Enterprise Mobility + Security, Defender ATP, etc.
• Powershell scripting and automation
• Hands-on experience with endpoint patch management, including Windows Autopatch, Intune update policies, and third-party patching tools (e.g., Patch My PC)
• Familiarity with ITIL-based change management processes, including CAB submissions, risk assessments, and rollback planning
• Experience with Freshservice for incident, change, and request management
• Experience supporting M&A or tenant migration projects in a Microsoft 365 environment is a plus
• Customer escalation and conflict resolution skills required
• Resource planning and mitigation management
• Excellent verbal and written communication skills
• Energetic, enthusiastic, charismatic
• Entrepreneurial spirit

Applicants must be legally authorized to work in the U.S. without requiring employer sponsorship now or in the future.

SOLV Energy Is an Equal Opportunity Employer

At SOLV Energy we celebrate the power of our differences. We are committed to building diverse, equitable, and inclusive workplaces that improve our communities. SOLV Energy prohibits discrimination and harassment of any kind against an employee or applicant based on race, color, age, religion, sex, sexual orientation, gender identity or expression, marital status, national origin, or ethnicity, mental or physical disability, veteran status, parental status, or any other characteristic protected by law.

Benefits:

Employees (and their families) are eligible for medical, dental, vision, basic life and disability insurance. Employees can enroll in our company's 401(k) plan and are provided vacation, sick and holiday pay.


Compensation Range:

$110,703.00 - $132,843.00

Pay Rate Type:

Salary

SOLV Energy does not accept unsolicited candidate introductions, referrals or resumes from third-party recruiters or staffing agencies. We require all third-party recruiters to communicate exclusively with our internal talent acquisition team. SOLV Energy will not pay a placement fee to any third-party recruiter or agency that has not coordinated their recruiting activity with the appropriate member of our internal talent acquisition team.

In addition, candidate introductions or resumes can only be submitted to our internal talent acquisition recruiting team if a signed vendor agreement is already on file and the third-party recruiter or agency has received formal instructions from our internal talent acquisition team to submit candidates for a particular job posting.

Any unsolicited candidate introductions, referrals or resumes sent by third-party recruiters to SOLV Energy or directly to any of our employees, or received through our website or career portal, will be considered property of SOLV Energy and will not be eligible for a placement fee. In the event a third-party recruiter submits a resume or refers a candidate without a previously signed vendor agreement, SOLV Energy explicitly reserves the right to pursue and hire the candidate(s) without financial liability to such third-party recruiter.

Job Number: J13198

If you're interested in a meaningful career with a brighter future, join the SOLV Energy Team.