Workplace Platform Engineer at qualysoft

Founded in 1999 in Vienna, the Qualysoft Group is a manufacturer-independent IT consulting and services company, which successfully provides support for its international customers with the aim of boosting their competitiveness and economic efficiency through innovative IT solutions. Its focus is on financial services providers, telecommunications companies, the automotive industry and energy service providers. Over 400 employees in 6 subsidiaries work together to ensure state of the art solutions for our clients. We are looking for new colleagues in Qualysoft teams for diverse projects providing continuous learning opportunities. Our common goal is to provide honesty, development and a stable background while getting to know the latest technologies. We are waiting for your application for the position below! About the Role: The Workplace Platform Engineer is responsible for the architecture, standardisation, security, and lifecycle management of the enterprise endpoint platform. This role ensures that all users are provided with a secure, scalable, and high-performing digital workplace environment aligned with corporate security, compliance, and operational standards. The role acts as the technical authority for endpoint platforms and modern device management, driving automation, standardisation, and continuous improvement across the workplace ecosystem. Responsibilities: • Design and maintain the enterprise endpoint architecture for Windows platforms, including device compliance models and security baselines. • Define endpoint standards such as OS builds, hardening baselines, encryption policies, and configuration controls. • Own the modern device management strategy, including Intune and Autopilot. • Establish lifecycle standards for OS versions, patching, and hardware refresh. • Lead configuration and governance of Intune, covering compliance policies, configuration profiles, and update rings. • Design zero-touch provisioning models (Autopilot). • Oversee software deployment strategies and packaging standards. • Drive proactive remediation and endpoint automation initiatives. • Implement endpoint security baselines aligned with cybersecurity policies. • Ensure encryption (BitLocker), EDR integration, and device compliance enforcement. • Collaborate with IAM and Security teams on conditional access and device trust models. • Define workplace service standards, SLAs, and KPIs. • Provide L3 escalation support for complex endpoint issues. • Lead root cause analysis for major workplace incidents. • Drive self-service, automation, and reduction of recurring incidents. • Maintain architecture documentation and configuration baselines. • Define hardware standards and approved device models. • Coordinate with hardware vendors and procurement. • Oversee asset lifecycle governance and refresh strategy. • Support cost optimization initiatives for endpoint services. • Evaluate emerging workplace technologies and modernization opportunities. • Drive standardization and simplification initiatives. • Mentor EUC operations specialists and Service Desk engineers. • Promote an automation-first and security-first mindset across workplace services. Requirements: • Advanced Windows 10/11 enterprise architecture knowledge • Deep expertise in Microsoft Intune / Endpoint Manager • Autopilot provisioning design and zero-touch deployment • OS lifecycle management and patch governance • Endpoint security baseline implementation (BitLocker, Defender, etc.) • Conditional Access and device compliance integration in cooperation with IAM • Software packaging and deployment models (Win32, MSI, scripting) • PowerShell scripting for automation and remediation • Endpoint monitoring and performance optimization • Understanding of Azure AD / Entra ID device registration concepts • Enterprise endpoint standardization strategy • Service design and catalog modeling • SLA and KPI definition for workplace services • Disaster recovery planning for endpoint management platforms • Documentation of architecture diagrams and operational baselines • Experience in large-scale global environments (3,000+ endpoints preferred) • Strong analytical and troubleshooting capability (L3 level) • Major incident coordination experience • Ability to design scalable, automation-driven service models • Vendor and supplier coordination experience • Cross-tower collaboration (IAM, Security, Infra, Collaboration, ITSM) • Mentoring and technical leadership of EUC specialists • 5–10+ years in enterprise endpoint engineering • Proven experience in modern workplace transformation projects • Experience migrating from legacy endpoint management to modern MDM • Microsoft certifications (e.g., Endpoint Administrator, Enterprise Admin) preferred • Strong understanding of ITIL-based service environments Why we think you will love working here: With us you count as a person, our doors are always open. We live the Qualysoft Team Spirit and stand for transparency! Fresh wind and new ideas are welcome, because standstill is a foreign word at Qualysoft.