Modern Workplace Engineer

Overview

At Wrench Group we’re scaling fast through aggressive growth — and we need a Modern Workplace Engineer who thrives in high-impact environments where automation, security, and innovation collide. You’ll own critical enterprise infrastructure supporting 7,000+ employees across a rapidly growing national organization. You’ll serve as the technical powerhouse behind cloud identity, endpoint management, automation, and Microsoft ecosystem security. 

You’re not “just” an admin. You’re the architect. The automator. The escalation point nobody else can solve. You’ll operate as the definitive technical “Number 2” to IT Operations leadership.

If your first instinct is to open PowerShell instead of clicking through a GUI

If you know your way around Microsoft Entra ID, Intune, Conditional Access, and the Microsoft Graph API…

If you’ve executed tenant-to-tenant migrations, secured enterprise identities, and built automation that eliminates manual work…

This is the role people wait years to find.

Please note:  We are interested in every qualified candidate who is eligible to work in the United States. However, we are not able to sponsor visas needed now or in the future. 

What's In It For You?

$85K–$90K base salary

Robust bonus potential

Unlimited PTO

Comprehensive medical, dental & vision coverage

401(k) with company match

Career growth through Wrench University

Remote!

Responsibilities

What Will I Do?

Identity & Security Architecture

Own and optimize Microsoft Entra ID (Azure AD)

Design and manage Conditional Access Policies

Configure PIM (Privileged Identity Management) and Azure RBAC

Secure Enterprise Applications and B2B/guest environments

Manage Microsoft Purview, DLP, retention policies, and eDiscovery

Automation & Infrastructure

Build enterprise automations using:

PowerShell (5.1 / 7.x)

Microsoft Graph API

Eliminate manual bottlenecks through scripting and automation

Execute complex:

Tenant-to-tenant migrations

Domain cutovers

M&A integrations

Utilize BitTitan MigrationWiz for enterprise migrations

Endpoint & Device Management

Architect and manage:

Microsoft Intune

Windows Autopilot

MDM/MAM policies

Defender for Endpoint

Serve as the highest-level escalation point for identity and endpoint challenges

Qualifications

Do I have What It Takes?

Bachelor’s or Master’s degree in Computer Science, Engineering, or a related field.

5+ years of experience in data engineering or a related field, with a proven track record of delivering high-quality data solutions.

We are specifically looking for candidates with proven proficiency in:

PowerShell scripting

Microsoft Graph API

Microsoft Entra ID / Azure AD

Conditional Access Policies

PIM (Privileged Identity Management)

Microsoft Intune

Windows Autopilot

Microsoft Defender for Endpoint

Exchange Online & Microsoft 365 Administration

Azure RBAC

Enterprise Application Security

Highly Desired

Tenant-to-tenant migrations

M&A integration experience

BitTitan MigrationWiz

Azure AD Connect / Cloud Sync

Microsoft Purview

SC-300 or AZ-104 Certifications

This role is NOT ideal for candidates who rely heavily on GUI administration without scripting and automation experience.

#LI-JA1