The Lead Desktop Engineer role at a regulated enterprise environment involves owning the technical direction and security posture of an endpoint ecosystem spanning approximately 14,000 devices. This senior position requires deep expertise in Intune, MECM (SCCM), Microsoft Defender, Entra ID, and related tools to ensure compliance, vulnerability remediation, and secure execution policies. The engineer will collaborate with Security, Infrastructure, Risk, and Audit teams to maintain audit readiness and deliver a stable end-user computing platform. Responsibilities include defining endpoint architecture, managing OS lifecycle standards, and providing decision authority for high-risk changes while driving operational efficiency through automation and continuous improvement. Ideal candidates have extensive experience in regulated environments like financial services or healthcare, with strong troubleshooting skills and the ability to communicate technical risks effectively to leadership.
Skills
Intune
MECM
SCCM
Microsoft Defender
Entra ID
Windows
PowerShell
Zero Trust
CI/CD
Terraform
AWS
Azure
Docker
Kubernetes
Prometheus
Grafana
PostgreSQL
Python
Go
What you'll do
Define and maintain endpoint architecture and configuration baselines aligned with security requirements.
Own vulnerability remediation and ensure timely adherence to SLAs for compliance.
Provide decision authority for high-risk technical changes to minimize operational risk.
Partner with Security teams to prioritize and execute endpoint remediation activities.
Drive operational efficiency through automation and policy-driven management practices.
What we're looking for
8+ years of experience in endpoint engineering within a large enterprise environment.
Deep hands-on expertise with Intune, MECM (SCCM), Microsoft Defender, and Entra ID.
Proven track record managing endpoint patching, vulnerability remediation, and compliance at scale.
Strong understanding of Zero Trust principles and conditional access enforcement.
Experience operating in regulated environments like financial services or healthcare.
Excellent troubleshooting skills for complex endpoint issues and root cause analysis.
Market check
Salary context
This
$110,000–$188,000
range sits above
20%
of similar postings on FindRole.
Peer median band
$139,872–$224,700
Median floor and ceiling across peers.
Typical midpoint (25–75%)
$153,550–$215,553
Middle half of comparable postings.
Based on 240 comparable postings.*
* 240 is the maximum number of comparable postings sampled.
Employer
About T. Rowe Price
T. Rowe Price is an asset management firm focused on delivering global investment management excellence and retirement services
T. Rowe Price currently has
18 open roles
on FindRole.
Listed pay typically runs
$145,000–$247,000
across 18 roles with salary data.
Locations Mclean, Virginia, US24 days ago
$69,400–$158,000
Intune
SCCM
Jamf Pro
API
CI/CD
Windows
macOS
Linux
scripting languages
endpoint security
application control
Antivirus
EDR
patching
privilege management
Conditional Access
vulnerability mitigation
network security
Microsoft Entra
Active Directory
BeyondTrust
CrowdStrike
Trellix
ServiceNow
Microsoft Teams