Modern Workplace Engineer

At Wrench Group we’re scaling fast through aggressive growth — and we need a Modern Workplace Engineer who thrives in high-impact environments where automation, security, and innovation collide. You’ll own critical enterprise infrastructure supporting 7,000+ employees across a rapidly growing national organization. You’ll serve as the technical powerhouse behind cloud identity, endpoint management, automation, and Microsoft ecosystem security. 

You’re not “just” an admin. You’re the architect. The automator. The escalation point nobody else can solve. You’ll operate as the definitive technical “Number 2” to IT Operations leadership.

• If your first instinct is to open PowerShell instead of clicking through a GUI
• If you know your way around Microsoft Entra ID, Intune, Conditional Access, and the Microsoft Graph API…
• If you’ve executed tenant-to-tenant migrations, secured enterprise identities, and built automation that eliminates manual work…

This is the role people wait years to find.

Please note:  We are interested in every qualified candidate who is eligible to work in the United States. However, we are not able to sponsor visas needed now or in the future. 

What's In It For You?

• $85K–$90K base salary
• Robust bonus potential
• Unlimited PTO
• Comprehensive medical, dental & vision coverage
• 401(k) with company match
• Career growth through Wrench University
• Remote!

What Will I Do?

Identity & Security Architecture

• Own and optimize Microsoft Entra ID (Azure AD)
• Design and manage Conditional Access Policies
• Configure PIM (Privileged Identity Management) and Azure RBAC
• Secure Enterprise Applications and B2B/guest environments
• Manage Microsoft Purview, DLP, retention policies, and eDiscovery

Automation & Infrastructure

• Build enterprise automations using:
  • PowerShell (5.1 / 7.x)
  • Microsoft Graph API
• Eliminate manual bottlenecks through scripting and automation
• Execute complex:
  • Tenant-to-tenant migrations
  • Domain cutovers
  • M&A integrations
• Utilize BitTitan MigrationWiz for enterprise migrations

Endpoint & Device Management

• Architect and manage:
  • Microsoft Intune
  • Windows Autopilot
  • MDM/MAM policies
  • Defender for Endpoint
• Serve as the highest-level escalation point for identity and endpoint challenges

Do I have What It Takes?

• Bachelor’s or Master’s degree in Computer Science, Engineering, or a related field.
• 5+ years of experience in data engineering or a related field, with a proven track record of delivering high-quality data solutions.

We are specifically looking for candidates with proven proficiency in:

• PowerShell scripting
• Microsoft Graph API
• Microsoft Entra ID / Azure AD
• Conditional Access Policies
• PIM (Privileged Identity Management)
• Microsoft Intune
• Windows Autopilot
• Microsoft Defender for Endpoint
• Exchange Online & Microsoft 365 Administration
• Azure RBAC
• Enterprise Application Security

Highly Desired

• Tenant-to-tenant migrations
• M&A integration experience
• BitTitan MigrationWiz
• Azure AD Connect / Cloud Sync
• Microsoft Purview
• SC-300 or AZ-104 Certifications

This role is NOT ideal for candidates who rely heavily on GUI administration without scripting and automation experience.

#LI-JA1