Job Title: Lead SCCM Consultant
Location: Remote
Type: Corp to Corp/1099
Start Date: ASAP

Pay Rate:  $70 - 75 per hour

Contract Length:  6 months - Potentially Renewable

We are seeking an experienced Lead SCCM (MECM) Consultant to join our team on a remote, 6-month renewable contract. As a Lead SCCM Consultant, you will leverage your deep expertise in enterprise Windows platforms and SCCM/MECM to develop, maintain, and optimize enterprise-scale infrastructure solutions. This role is critical to ensuring seamless endpoint computing, robust patching and compliance, efficient PKI operations, and automation excellence. You will serve as the subject matter expert (SME) for all SCCM-related initiatives, designing and implementing strategies that enhance enterprise-scale Windows environments and deliver exceptional outcomes.

• Lead large-scale SCCM/MECM programs, including Operating System Deployment (OSD), Task Sequence management, application packaging, Software Update Point (SUP)/WSUS patching, and compliance baseline/report creation.
• Define and drive strategies to ensure high patch compliance and resolve vulnerabilities across the enterprise.
• Create and maintain comprehensive task sequences, driver/firmware lifecycles, and custom automation frameworks to streamline SCCM operations.
• Monitor system performance and provide technical leadership to ensure platform stability and scalability.

• Deliver measurable endpoint computing outcomes such as reduced login times, stable driver and firmware management, and resilient EAP-TLS/Wi-Fi/VPN user experiences.
• Partner with stakeholders to enhance endpoint performance while maintaining high security and compliance standards.
• Proactively implement solutions to improve the reliability, consistency, and overall user experience of the Windows platform.

• Design, deploy, and manage large-scale public key infrastructure (PKI) operations, including ADCS, ACM Private CA, GCP CAS, Venafi, Vault PKI, and ACME.
• Automate certificate issuance/renewal workflows and develop robust strategies to prevent certificate expiry issues.
• Collaborate cross-functionally to improve security and reliability through advanced cryptographic services and certificate governance.

• Develop enterprise-grade automation solutions using PowerShell, Desired State Configuration (DSC), Terraform, and Packer.
• Leverage CI/CD pipelines and automated testing to enhance efficiency and deliver repeatable, reliable solutions.
• Champion Infrastructure as Code (IaC) practices to manage and version-control system configurations seamlessly.

• Provide expert-level troubleshooting of enterprise Windows environments using tools such as Sysinternals, WPR/WPA, WinDbg, ETW/WEF, PerfMon, Wireshark, and Windows event logs.
• Drive root cause analysis (RCA) and deliver preventative engineering measures to preempt future disruptions.
• Empower teams with clear documentation and knowledge-sharing to enhance collective problem-solving capabilities.

Required Qualifications

• 8+ years of experience designing, building, and operating enterprise Windows platforms, including both server and endpoint environments at scale.
• Proven success owning and managing Active Directory (AD), DNS/DHCP, and NPS environments with a minimum of 10,000 endpoints or equivalent.
• Substantial experience leading large-scale SCCM/MECM initiatives, including OSD, Task Sequences, application packaging, SUP/WSUS patching, compliance management, and reporting at fleet scale.
• Proven ability to deliver endpoint computing results, such as high patch compliance, stable driver/firmware lifecycle management, and enhanced user experiences with EAP-TLS, Wi-Fi, or VPN services.
• Expertise in PKI/CMaaS, including practical experience with ADCS, ACM Private CA, GCP CAS, Venafi, Vault PKI, and ACME.
• Advanced scripting and automation skills using PowerShell, DSC, Terraform, Packer, and experience implementing DevOps best practices (CI/CD pipelines and automated testing).
• Demonstrated troubleshooting expertise in large-scale enterprise platforms using advanced tools such as Sysinternals, PerfMon, WinDbg, ETW/WEF, and Wireshark.

Preferred Qualifications

• Knowledge of modern IT frameworks such as ITIL or experience working in ITSM environments.
• Experience implementing and supporting secure, scalable endpoint ecosystems in highly regulated industries.
• Relevant certifications (e.g., Microsoft Certified: Endpoint Administrator, SCCM Certifications, or PKI-related certifications).

Other Duties: Please note this job description is not designed to cover or contain a comprehensive list of activities, duties or responsibilities that are required of the employee for this job.  Duties, responsibilities, and activities may change at any time with or without notice.

Cayuse is an Equal Opportunity Employer.  All employment decisions are based on merit, qualifications, skills, and abilities. All qualified applicants will receive consideration for employment in accordance with any applicable federal, state, or local law.