FuntoNetwork ConsultingRemote
Remote Workspace Engineer - Secure Company Laptop & Digital Environment Specialist
United States of America
Full Time
1 week ago
Visa Sponsor
Key skills
Endpoint managementLaptop provisioningMicrosoft IntuneJamfEndpoint security suitesConfiguration managementWindows AutopilotDevice Enrollment Program (DEP)Remote monitoring and management toolsStandardized laptop imagingSecurity controls implementationPowerShell scriptingBash scriptingPython scriptingCloud-based device management platformsNetwork security for remote devicesIdentity and access management integrationFull disk encryption BitLockerFull disk encryption FileVaultEndpoint Detection and Response (EDR)Application allow-listingFirewall configurationCompliance monitoringConditional access policiesVPNZero Trust Network Access (ZTNA)Data loss preventionEmail security controlsMessaging platform configurationRemote troubleshooting and supportPythonBashPowerShellCommunicationCollaborationRemote WorkNetwork SecurityFirewall
About this role
FuntoNetwork is an IT Solutions & Services Firm seeking a specialized Remote Workspace Engineer to design, implement, and manage secure, compliant, and productive digital workspaces on company-provided laptops for a fully remote workforce. This role is critical in ensuring that every employee's laptop is pre-configured, secured, monitored, and maintained to meet high standards for security, productivity, and compliance.
Responsibilities:
- Develop and maintain standardized, hardened laptop images for different employee roles
- Manage the entire laptop lifecycle: procurement, imaging, deployment, maintenance, and retrieval
- Create automated deployment workflows for new hires and replacement devices
- Implement remote wipe and lockdown capabilities for lost, stolen, or offboarded devices
- Maintain inventory tracking and asset management for all company laptops
- Implement and manage comprehensive security controls on all company laptops:
- Full disk encryption (BitLocker, FileVault)
- Endpoint Detection and Response (EDR) solutions
- Application allow-listing and software restriction policies
- Firewall and network security configurations
- Security baselines and compliance monitoring
- Enforce automated compliance checks and remediation
- Implement conditional access policies based on device compliance status
- Deploy and configure employee monitoring solutions on all company laptops:
- Application and website usage tracking during work hours
- Activity monitoring with clear productivity metrics
- Camera status and usage monitoring for video conferencing
- Communication monitoring across work platforms
- Design and implement transparent monitoring policies with employee acknowledgment
- Create management dashboards for productivity and security metrics
- Configure and enforce communication security policies:
- Email security controls with external communication restrictions
- Approved messaging platform configurations and monitoring
- File transfer controls and data loss prevention
- External sharing restrictions for collaboration tools
- Implement web filtering and content controls
- Manage secure remote access solutions (VPN, ZTNA) and network restrictions
- Pre-configure all laptops with standardized secure image before shipping
- Implement remote management capabilities from first boot
- Automate software deployment and updates
- Manage security policy enforcement and compliance reporting
- Deploy activity monitoring with employee transparency and acknowledgment
- Implement work-time tracking on company devices
- Configure appropriate productivity and security alerts
- Establish clear usage policies for company-provided equipment
- Provide remote troubleshooting and support for company laptops
- Implement remote control solutions for technical assistance
- Develop self-service resources for common issues
- Manage hardware issues through vendor coordination
Requirements:
- 3+ years in endpoint management, laptop provisioning, or remote workforce technology
- Proven experience managing company-owned laptop fleets in remote environments
- Expert knowledge of modern MDM/UEM solutions (Microsoft Intune, Jamf, etc.)
- Expert knowledge of endpoint security suites and configuration management
- Expert knowledge of imaging and deployment technologies (Windows Autopilot, DEP, etc.)
- Expert knowledge of remote monitoring and management tools
- Hands-on experience with creating and maintaining standardized laptop images
- Hands-on experience with implementing comprehensive security controls on endpoints
- Hands-on experience with deploying monitoring solutions on company devices
- Hands-on experience with remote troubleshooting and support for distributed devices
- Understanding of security frameworks for endpoint protection
- Experience with compliance enforcement and reporting
- Knowledge of data protection regulations for remote work scenarios
- Ability to balance security requirements with employee productivity
- Strong scripting skills for automation (PowerShell, Bash, Python)
- Experience with cloud-based device management platforms
- Understanding of network security for remote devices
- Knowledge of identity and access management integration