Position summary: The Endpoint Engineer is responsible for building and managing the foundational IT infrastructure for Cooley AI. This includes endpoint provisioning and lifecycle management, Microsoft 365 administration, identity and access management, and establishing the core IT policies, tooling, and support processes that enable a growing team to work securely and productively from day one. This role is hands-on and responsible for architecting systems and deploying them in a fast-moving, resource-lean environment.  Specific duties and responsibilities include, but are not limited to, the following:

Position responsibilities:

• Configure, deploy, and manage endpoint devices including imaging, hardware standards, and lifecycle management from procurement through decommissioning
• Stand up and administer the Microsoft 365 environment including Exchange Online, SharePoint, OneDrive, Teams, and Entra ID (Azure AD) for identity and access management
• Implement and manage endpoint management solutions such as Microsoft Intune, Jamf, or similar MDM/UEM platforms to enforce security policies, deploy software, and manage device compliance
• Establish and maintain core IT infrastructure including networking and VPN
• Design and implement IT onboarding and offboarding workflows including account provisioning, device setup, access controls, and asset recovery to support rapid employee growth
• Develop and enforce endpoint security policies including disk encryption, endpoint detection and response (EDR), patch management, and conditional access policies
• Manage vendor relationships for hardware procurement, SaaS licensing, telecom, and IT service providers; negotiate contracts and manage budgets
• Establish and document policies, practices, and working procedures needed for the supported applications and services to deliver their intended results and for the customers to make efficient and effective use of technology
• Manage release cycles, software licensing audits, and third-level escalations
• Manage the design, development, testing and implementation of login scripts
• Evaluate, select, and implement SaaS tools and collaboration platforms that support a growing start-up team (e.g., Teams, Zoom, project management, password management)
• Create and maintain IT documentation including standard operating procedures, knowledge base articles, asset inventories, and network diagrams
• Provide hands-on Tier 1 and Tier 2 technical support for employees including troubleshooting, software issues, connectivity problems, and account access requests
• Partner with the security team to ensure endpoint configurations meet compliance requirements (SOC 2, ISO 27001) and support audit readiness
• All other duties as assigned or required

Skills and experience:

Required:

• After orientation at Cooley LLP, exhibit proficiency in the Microsoft Office suite, iManage and other firm applications
• Ability to work extended and/or weekend hours, as required
• Ability to travel, as required
• 4+ years of directly applicable experience in IT operations, endpoint engineering, or systems administration
• Deep hands-on experience administering Microsoft 365 (Exchange Online, SharePoint, Teams, Entra ID/Azure AD) including tenant configuration, licensing, and security settings
• Proficiency with endpoint management platforms such as Microsoft Intune, Jamf Pro, or comparable MDM/UEM solutions
• Strong understanding of networking fundamentals (DNS, DHCP, VPN, Wi-Fi, firewalls) and experience configuring office network infrastructure
• Experience with identity and access management including SSO, MFA, conditional access policies, and directory services
• Knowledge of endpoint security best practices including EDR, disk encryption (BitLocker/FileVault), patch management, and zero-trust principles
• Scripting ability (PowerShell, Bash, or Python) for automation of routine IT tasks and device provisioning

Preferred:

• Bachelor’s degree in Information Technology, Computer Science, or related field
• Microsoft certifications (M365 Administrator, Azure Administrator, or Modern Desktop Administrator)
• Demonstrated experience building IT infrastructure from scratch or in start-up environments
• Experience supporting SOC 2 or ISO 27001 compliance from an endpoint and infrastructure perspective

Competencies:

• Customer service mindset with a strong sense of urgency when supporting end users
• Comfortable operating as a hands-on builder in a start-up environment where processes and infrastructure are being created from the ground up
• Ability to make sound decisions quickly with incomplete information and shift priorities as business needs change
• Strong written and verbal communication skills with the ability to explain technical concepts to non-technical stakeholders
• Meticulous attention to detail, especially around security configurations, access controls, and documentation
• Resourceful problem solver who takes ownership and finds solutions without waiting for direction
• Collaborative team player who partners effectively across engineering, HR, security, and leadership teams
• Ability to manage multiple concurrent projects and priorities in a high-growth environment
• Unwavering ability to handle and maintain confidentiality regarding firm information, projects,
• client data
• High level of professionalism at all times
• Proactive, analytical mindset
• Effective presentation skills

Cooley offers a competitive compensation and excellent benefits package and is committed to fair and equitable employment practices.