Key skills
Windows 11 OS deploymentWindows 11 image engineeringActive DirectoryGroup Policy (GPO)Multi-Factor Authentication (MFA) integrationSingle Sign-On (SSO) integrationApplication packagingdeploymentMSI packagingScriptingIntuneSCCMOS patchingImage lifecycle managementProfile management solutionsFSLogixMicrosoft 365 integrationAWS WorkSpaces image customizationPowerShell scriptingVDI environmentsPowerShellAWSSSOSaaS
About this role
CDW is seeking a Windows 11 Image Engineering Subject Matter Expert to design, secure, and operationalize golden images for AWS WorkSpaces in a large enterprise environment. This hands-on role focuses on image engineering, identity integration, security hardening, and lifecycle management. The individual will own the Windows 11 image lifecycle end-to-end, ensuring optimized performance and secure access.
Responsibilities:
- Design, build, and maintain Windows 11 golden images/templates for AWS WorkSpaces
- Package, install, and validate enterprise applications and security tools within base images
- Define and execute image lifecycle processes (versioning, patching, testing, and release management)
- Integrate images with Active Directory and enterprise identity services
- Configure and manage Group Policy (GPOs) aligned to security and user experience requirements
- Implement and validate MFA and SSO within the virtual desktop environment
- Optimize images for performance, login times, stability, and resource usage
- Apply security hardening standards (CIS benchmarks, enterprise policies)
- Support automation for image deployment, updates, and maintenance
- Partner with security, identity, and application teams to ensure compatibility and compliance
Requirements:
- Strong hands-on expertise with Windows 11 OS deployment, configuration, and optimization
- Proven experience creating and maintaining golden images in enterprise environments
- Solid knowledge of Active Directory (GPOs, OU design, authentication flows)
- Experience integrating MFA and identity services within Windows desktop environments
- Application packaging and deployment experience (MSI, scripting, Intune, SCCM)
- Experience managing OS patching and image lifecycle processes
- Familiarity with profile management solutions (e.g., FSLogix)
- Understanding of SSO integration with Microsoft 365, OneDrive, and SaaS applications
- Hands-on experience with AWS WorkSpaces image customization and optimization
- Experience with endpoint management platforms (Intune, SCCM, or similar)
- PowerShell scripting or automation experience
- Background supporting VDI environments (AWS WorkSpaces, Citrix, VMware Horizon, Nutanix)