Microsoft Endpoint Analyst

Working as a core member of our Endpoint Team, this role will heavily contribute to the architecture, deployment, security, and lifecycle management of all global endpoint devices. Due to the evolution of our environment, this role is now heavily focused on modern management principles, utilising Microsoft Intune, Azure (Entra ID), and the Microsoft 365 E5 suite to support a diverse, global enterprise of over 4,000 users and almost 5,000 devices.

While Microsoft Configuration Manager (SCCM) remains a core part of our management infrastructure, a primary objective of this role will be managing the existing environment whilst leading the strategic migration of core workloads from SCCM to Intune.

Although based primarily in one of our offices, this is a Global role critical to our digital transformation. You will work closely with Infrastructure, Information Security, Application Development, and Application Support teams to develop solutions that are secure, scalable, and user-friendly. Alongside other members of the team, you will take ownership of complex work packages, lead proof-of-concept (POC) initiatives, and guide the firm through major endpoint transitions, such as adoption to the latest iteration of Windows, or evolutions in the Microsoft 365 ecosystem as we look to further embrace them around the firm, in particular the AI Workloads.

This very important role requires a proactive problem-solver with deep expertise in modern endpoint management. In addition to our physical estate, you will play a pivotal role in managing, upgrading, configuring, and architecting our Azure Virtual Desktop (AVD) environment, ensuring a high-performance, secure, and resilient virtualised experience for our users and consultants

You will also be instrumental in the administration and optimisation of Conditional Access Policies, Application Protection, and zero-trust security frameworks. Crucially, this involves the management, support, and ongoing ownership of our Netskope environment alongside the rest of the team. Furthermore, managing the health and configuration of our global Teams Meeting Room devices within this modern workplace is of critical importance.

Automation is at the heart of our strategy for success within the team. You will heavily utilise Tines to build and maintain automated workflows, moving the team (and userbase) away from manual interventions and towards a streamlined, self-healing endpoint environment that integrates with ServiceNow. Working collaboratively with our external SOC and leveraging platforms like Netskope, you will also help implement CIS benchmarks and security best practices to continually harden our endpoints against ever-evolving threats.

This role is for a forward-thinking technologist who is passionate about both existing and emerging technology, seeking innovative solutions, isn't afraid to embrace AI and has a drive to deliver a seamless user experience.

Bird & Bird's Technology Team mission is to support the strong technology focus of the Firm, provide modern technology to support the business and creative solutions for our Clients.

In London, the team comprises 50 technology staff covering a broad range of technologies and specialisms including business architecture, business solutions, project and programme management, modern infrastructure and they are all primarily focused on international projects working alongside colleagues in our 33 offices. Whether it's analysing new solutions, driving innovation, developing client solutions or providing a first class, high availability infrastructure and support we are a diverse, energised group focused on service and contributing to both the internal and external use of technologies. We work extensively across the network and seek candidates who are keen to engage internationally and make wider contributions both internally and externally than just IT service and delivery.

Key Responsibilities

Engage Modern Endpoint Management: Architect, configure, and manage, with the team, our global fleet using Microsoft Intune, SCCM, and Azure, establishing best practices for Windows 11 and optimising our M365 E5 investment. Drive the Intune Migration: Take a leading role in managing our co-managed environment and executing the ongoing migration of core workloads from Microsoft Configuration Manager (SCCM) to Intune, ensuring a seamless transition to modern cloud management. Manage Virtual Environments: Architect, configure, upgrade, and manage our Azure Virtual Desktop (AVD) infrastructure alongside the team, ensuring a high-performance, secure, and resilient virtualised experience for our users. Automate Workflows: Design, implement, and maintain automated workflows using Tines to streamline endpoint provisioning, remediation, and repetitive administrative tasks. Secure the Perimeter: Take combined ownership of Conditional Access Policies (with InfoSec), Application Protection Policies, and Group Policies to enforce zero-trust principles without hindering user productivity. Manage Collaborative Tech: Oversee the deployment, health monitoring, and configuration of global Teams Meeting Room devices and related collaborative hardware. Drive Cloud Initiatives: Act as a crucial player in cloud migration and optimisation projects, engaging in POCs for emerging technologies (e.g., Windows 365, 3rd Party platform initiatives) and assessing their viability for our enterprise. Enhance Cybersecurity: Collaborate closely with the Information Security team to implement CIS recommendations and manage threat detection using tools such as ThreatAware, alongside our Endpoint Clients such as Netskope and Palo Alto XDR. Application & Lifecycle Management: Oversee the packaging, deployment, and auditing of core business applications, ensuring diverse driver libraries and third-party software remain patched and secure. Provide Escalation Support: Act as the 3rd line technical authority for complex endpoint and modern workplace issues, liaising with global IT teams and vendor support to resolve high-priority incidents. Mentor and Document: Keep up to date with the latest technology, document configurations and procedures, and share knowledge across the Desktop and Application Support teams.

What You'll Bring

Deep expertise in Modern Endpoint Management, specifically Microsoft Intune, Microsoft Configuration Manager (SCCM), Microsoft Azure (Entra ID), and the Microsoft 365 E5 security and compliance suite. Proven experience managing and optimising Windows 11 deployments at an enterprise scale (4,000+ endpoints). Hands-on experience architecting, configuring, and managing Azure Virtual Desktop (AVD) environments. Strong hands-on experience building automated workflows (experience with Tines is highly advantageous, or similar SOAR/automation platforms). Demonstrable experience architecting and troubleshooting Conditional Access Policies and mobile device management (MDM/MAM). Familiarity with the deployment and management of Teams Meeting Room (TMR) devices. A robust understanding of cybersecurity best practices, zero-trust architecture, and CIS benchmarking, ideally with practical experience managing security clients such as Netskope, Palo Alto XDR, and ThreatAware.

What's In It For You

We provide comprehensive support for our colleagues' health and wellbeing, including private medical cover, life assurance, critical illness cover, and regular health assessments. In addition, we offer a range of lifestyle benefits designed to help our team live their best lives, such as a cycle to work scheme, access to online GP appointments, discounted gym memberships, and an electric vehicle scheme.

If you require any assistance, please email us at talentacquisitionlondon@twobirds.com

To apply, click on the 'apply' button to submit your details.

Bird & Bird opens up a world of possible for lawyers and professionals everywhere. Working for a leading international law firm like Bird & Bird means working alongside people who are truly collegiate in the way they work with everyone. We work as one global team, with over 70% of work involving people from across the firm. And that's only increasing! It's this common purpose and shared approach that makes for a more productive and collaborative place to work. Your firm. Your future.

If you want to find out more, visit www.twobirds.com

As a disability and neurodiversity inclusive employer we want to ensure that you have a barrier-free recruitment experience at Bird & Bird. If you require any adjustments during the recruitment process, please provide details to your recruitment contact who will be in touch to discuss any details provided and understand more about your individual adjustment needs.

Download Download Download