Farmers & Merchants Bank of Long Beach
Endpoint Automation Engineer 2
Farmers & Merchants Bank of Long Beach, Seal Beach, California, United States, 90740
Endpoint Automation Engineer 2 – Farmers & Merchants Bank of Long Beach
Job Summary: The Endpoint Automation Engineer 2 designs, implements, and manages automated solutions for user endpoints—including desktops, laptops, mobile devices, and peripherals—across on‑premises and cloud environments. The position focuses on streamlining software deployment, patch management, configuration, and system maintenance to ensure secure, efficient, and reliable endpoint operations with minimal user disruption. Leveraging tools such as Microsoft Intune, Tanium, ServiceNow, and open‑source workflow automation platforms (along with PowerShell and Python scripting), the role automates endpoint management and vulnerability remediation. The engineer collaborates closely with ITS and Security teams to enhance compliance, strengthen the organization’s security posture, and drive operational efficiency through scalable, automated solutions.
Pay Range Farmers & Merchants Bank of Long Beach provided pay range: $92,560.00/yr – $157,040.00/yr
Essential Duties
Develop, maintain, and optimize automation scripts using PowerShell, Python, or other scripting languages to streamline software deployment, workstation imaging, configuration, and repetitive administrative tasks.
Design and develop innovative open‑source workflow automation systems to connect, optimize, and automate processes across multiple platforms and services.
Design and maintain automated workflows for device provisioning, patch management, system configuration and day‑to‑day tasks across Service Desk environment.
Utilize endpoint management tools (e.g., Intune, Tanium) and automation frameworks to enhance operational efficiency, consistency, and compliance.
Integrate ServiceNow with endpoint management platforms to enable unified automation, reporting, and incident response.
Monitor automated processes for failures, perform root cause analysis, and implement corrective actions to ensure reliability.
Monitor and maintain assigned support tickets daily, ensuring adherence to SLAs for response, escalation, and resolution based on severity and priority.
Provide advanced technical support to the Service Desk for endpoint‑related issues beyond Service Desk Tech capabilities.
Manage the full lifecycle of Windows endpoints—including provisioning, configuration, maintenance, upgrades, and de‑provisioning.
Administer and troubleshoot enterprise platforms such as Active Directory (on‑prem and Entra ID), Group Policy, Windows Enterprise, Microsoft 365, and Intune from an endpoint perspective.
Configure, maintain, and update system images and baseline configurations in alignment with IT policies and management directives.
Responsible for high‑priority (“Zero‑Day”) vulnerabilities and security patches across Windows and third‑party applications.
Ensure adherence to departmental Standard Operating Procedures, checklists, and standardization practices.
Analyze endpoint infrastructure performance, scalability, and redundancy; produce reports and benchmarks to guide optimization efforts.
Develop and maintain technical documentation, scripts, and configuration standards to support consistency and knowledge sharing.
Maintain hardware and software efficiency through continuous monitoring, upgrades, and lifecycle management.
Assist in building and maintaining a Generative AI‑powered knowledge base that serves as a user self‑help and IT support portal.
Work closely with vendors and internal stakeholders to coordinate deployments, resolve escalations, and support bank‑wide IT projects.
Provide technical training and mentorship to IT team members and bank associates.
Participate in on‑call rotation to provide after‑hours support and ensure endpoint stability and security.
Compliance with all State and Federal banking regulatory requirements, including but not limited to BSA, Anti‑Money Laundering OFAC, CIP, Financial Elder Abuse Reporting, Sexual Harassment, Information Security and privacy requirements. This position will elevate suspicious activity to supervisory staff and/or BSA department. Completes compliance and other technical training workshops as assigned.
Basic Knowledge, Skills and Abilities
Strong proficiency in PowerShell, Python, Regex, JSON/XML Parsing and workflow automation tools.
Working knowledge of automation frameworks and experience integrating solutions across hybrid cloud environments (Azure, AWS, on‑premises).
Hands‑on experience with EMP, EMSP, UEM, MDM (e.g., Intune & Tanium), Active Directory, and Azure in hybrid environments.
Strong expertise in endpoint security, vulnerability assessment, and compliance management aligned with Windows Enterprise standards and best practices.
Excellent analytical, communication, and collaboration skills across technical and non‑technical teams.
Competencies
Attitude
– Demonstrate a positive “can‑do” attitude; show motivation; must be goal‑oriented and a self‑starter; be “solution‑minded” rather than “problem‑minded.”
Work Ethic
– Must be dedicated, responsible, hard‑working, and a team‑player.
Oral Communication
– Speak clearly and persuasively in positive or negative situations; listen and get clarification; respond well to questions; demonstrate group presentation skills; participate in meetings.
Written Communication
– Write clearly and informatively; edit work for spelling and grammar; vary writing style to meet needs; able to read and interpret written information.
Bank Support
– Follow policies and procedures; support the bank’s mission, goals, and values.
Quality Management
– Look for ways to improve and promote quality; demonstrate accuracy and thoroughness.
Diversity
– Demonstrate knowledge of the bank’s diversity policy; show respect and sensitivity for cultural differences; educate others on the value of diversity; promote a harassment‑free environment; build a diverse workforce.
Teamwork
– Balance team and individual responsibilities; exhibit objectivity and openness to others' views; give and welcome feedback; contribute to building a positive team spirit; put success of team above own interests.
Judgment
– Display willingness to make decisions; exhibit sound and accurate judgment; support and explain reasoning for decisions; include appropriate people in decision‑making process; make timely decisions.
Professionalism
– Approach others in a tactful manner; react well under pressure; treat others with respect and consideration, regardless of their status or position; accept responsibility for own actions; follow through on commitments.
Safety and Security
– Observe safety and security procedures; determine appropriate action beyond guidelines; report potentially unsafe conditions; use equipment and materials properly.
Adaptability
– Adapt to changes in the work environment; manage competing demands; change approach or method to best fit the situation; be able to deal with frequent changes, delays, or unexpected events.
Attendance and Punctuality
– Be consistently at work and on time; ensure work responsibilities are covered when absent; arrive at meetings and appointments on time.
Dependability
– Follow instructions, respond to management direction; take responsibility for own actions; keep commitments; commit to long hours of work when necessary to reach goals.
Innovation
– Display original thinking and creativity; meet challenges with resourcefulness; develop innovative approaches and ideas.
Education and Experience
Minimum 10 years of experience in Service Desk Support and Systems Administration with desktop and server support in a business environment.
Minimum 10 years of experience deploying configuration policies with Active Directory (GPOs, security groups, Windows firewall settings, etc.), Microsoft Intune, and MDM products.
Expert‑level proficiency with Microsoft Windows products (10+ years).
Require high‑level proficiency automating system administration using Microsoft PowerShell.
Extensive hands‑on experience with supporting and automating the distribution and configuration of Windows PC applications and mobile apps to Apple devices.
Extensive experience with a major Endpoint Management Platform (KACE, SCCM, BigFix, Tanium, etc.).
Experience with deploying applications and client configurations using major virtual desktop platforms: VMware View, Citrix, Microsoft RDS.
Senior‑level experience with application support, security, and technical documentation.
Experience supporting Cloud‑based SaaS solutions, such as Microsoft M365, Azure VDI.
5+ years of experience in ITIL Framework required.
Preferred certifications: Microsoft Solutions Associate, ITIL Foundation, MCP, Azure Professional, Security+, VMware, ServiceNow.
Physical Requirements & Work Environment
Requires repetitive movement.
Requires travel to branch locations.
Requires sitting for prolonged periods of time.
Requires lifting up to 50 lbs.
Requires using hands to handle, control or feel objects; hearing, speaking, bending, squatting, and speaking.
Office setting with controlled temperature.
Proper at‑home work setup for remote work capabilities.
Additional Requirements
Professional business attire.
Ability to work evenings, weekends and holidays as needed.
As part of the bank’s internal control systems, employees holding sensitive positions are required to be absent from their duties for a minimum of
two
consecutive weeks each year. This position has been deemed to meet the test for a sensitive position, and therefore you will be required to meet the minimum absence requirement each and every year.
This job description is not intended to be all‑inclusive, and employees will be required to perform additional related work duties as assigned by their immediate supervisor and/or management.
Farmers & Merchants Bank of Long Beach reserve the right to revise or change job duties and responsibilities as the need arises. This job description does not constitute a written or implied contract of employment.
November 20, 2025
#J-18808-Ljbffr
Job Summary: The Endpoint Automation Engineer 2 designs, implements, and manages automated solutions for user endpoints—including desktops, laptops, mobile devices, and peripherals—across on‑premises and cloud environments. The position focuses on streamlining software deployment, patch management, configuration, and system maintenance to ensure secure, efficient, and reliable endpoint operations with minimal user disruption. Leveraging tools such as Microsoft Intune, Tanium, ServiceNow, and open‑source workflow automation platforms (along with PowerShell and Python scripting), the role automates endpoint management and vulnerability remediation. The engineer collaborates closely with ITS and Security teams to enhance compliance, strengthen the organization’s security posture, and drive operational efficiency through scalable, automated solutions.
Pay Range Farmers & Merchants Bank of Long Beach provided pay range: $92,560.00/yr – $157,040.00/yr
Essential Duties
Develop, maintain, and optimize automation scripts using PowerShell, Python, or other scripting languages to streamline software deployment, workstation imaging, configuration, and repetitive administrative tasks.
Design and develop innovative open‑source workflow automation systems to connect, optimize, and automate processes across multiple platforms and services.
Design and maintain automated workflows for device provisioning, patch management, system configuration and day‑to‑day tasks across Service Desk environment.
Utilize endpoint management tools (e.g., Intune, Tanium) and automation frameworks to enhance operational efficiency, consistency, and compliance.
Integrate ServiceNow with endpoint management platforms to enable unified automation, reporting, and incident response.
Monitor automated processes for failures, perform root cause analysis, and implement corrective actions to ensure reliability.
Monitor and maintain assigned support tickets daily, ensuring adherence to SLAs for response, escalation, and resolution based on severity and priority.
Provide advanced technical support to the Service Desk for endpoint‑related issues beyond Service Desk Tech capabilities.
Manage the full lifecycle of Windows endpoints—including provisioning, configuration, maintenance, upgrades, and de‑provisioning.
Administer and troubleshoot enterprise platforms such as Active Directory (on‑prem and Entra ID), Group Policy, Windows Enterprise, Microsoft 365, and Intune from an endpoint perspective.
Configure, maintain, and update system images and baseline configurations in alignment with IT policies and management directives.
Responsible for high‑priority (“Zero‑Day”) vulnerabilities and security patches across Windows and third‑party applications.
Ensure adherence to departmental Standard Operating Procedures, checklists, and standardization practices.
Analyze endpoint infrastructure performance, scalability, and redundancy; produce reports and benchmarks to guide optimization efforts.
Develop and maintain technical documentation, scripts, and configuration standards to support consistency and knowledge sharing.
Maintain hardware and software efficiency through continuous monitoring, upgrades, and lifecycle management.
Assist in building and maintaining a Generative AI‑powered knowledge base that serves as a user self‑help and IT support portal.
Work closely with vendors and internal stakeholders to coordinate deployments, resolve escalations, and support bank‑wide IT projects.
Provide technical training and mentorship to IT team members and bank associates.
Participate in on‑call rotation to provide after‑hours support and ensure endpoint stability and security.
Compliance with all State and Federal banking regulatory requirements, including but not limited to BSA, Anti‑Money Laundering OFAC, CIP, Financial Elder Abuse Reporting, Sexual Harassment, Information Security and privacy requirements. This position will elevate suspicious activity to supervisory staff and/or BSA department. Completes compliance and other technical training workshops as assigned.
Basic Knowledge, Skills and Abilities
Strong proficiency in PowerShell, Python, Regex, JSON/XML Parsing and workflow automation tools.
Working knowledge of automation frameworks and experience integrating solutions across hybrid cloud environments (Azure, AWS, on‑premises).
Hands‑on experience with EMP, EMSP, UEM, MDM (e.g., Intune & Tanium), Active Directory, and Azure in hybrid environments.
Strong expertise in endpoint security, vulnerability assessment, and compliance management aligned with Windows Enterprise standards and best practices.
Excellent analytical, communication, and collaboration skills across technical and non‑technical teams.
Competencies
Attitude
– Demonstrate a positive “can‑do” attitude; show motivation; must be goal‑oriented and a self‑starter; be “solution‑minded” rather than “problem‑minded.”
Work Ethic
– Must be dedicated, responsible, hard‑working, and a team‑player.
Oral Communication
– Speak clearly and persuasively in positive or negative situations; listen and get clarification; respond well to questions; demonstrate group presentation skills; participate in meetings.
Written Communication
– Write clearly and informatively; edit work for spelling and grammar; vary writing style to meet needs; able to read and interpret written information.
Bank Support
– Follow policies and procedures; support the bank’s mission, goals, and values.
Quality Management
– Look for ways to improve and promote quality; demonstrate accuracy and thoroughness.
Diversity
– Demonstrate knowledge of the bank’s diversity policy; show respect and sensitivity for cultural differences; educate others on the value of diversity; promote a harassment‑free environment; build a diverse workforce.
Teamwork
– Balance team and individual responsibilities; exhibit objectivity and openness to others' views; give and welcome feedback; contribute to building a positive team spirit; put success of team above own interests.
Judgment
– Display willingness to make decisions; exhibit sound and accurate judgment; support and explain reasoning for decisions; include appropriate people in decision‑making process; make timely decisions.
Professionalism
– Approach others in a tactful manner; react well under pressure; treat others with respect and consideration, regardless of their status or position; accept responsibility for own actions; follow through on commitments.
Safety and Security
– Observe safety and security procedures; determine appropriate action beyond guidelines; report potentially unsafe conditions; use equipment and materials properly.
Adaptability
– Adapt to changes in the work environment; manage competing demands; change approach or method to best fit the situation; be able to deal with frequent changes, delays, or unexpected events.
Attendance and Punctuality
– Be consistently at work and on time; ensure work responsibilities are covered when absent; arrive at meetings and appointments on time.
Dependability
– Follow instructions, respond to management direction; take responsibility for own actions; keep commitments; commit to long hours of work when necessary to reach goals.
Innovation
– Display original thinking and creativity; meet challenges with resourcefulness; develop innovative approaches and ideas.
Education and Experience
Minimum 10 years of experience in Service Desk Support and Systems Administration with desktop and server support in a business environment.
Minimum 10 years of experience deploying configuration policies with Active Directory (GPOs, security groups, Windows firewall settings, etc.), Microsoft Intune, and MDM products.
Expert‑level proficiency with Microsoft Windows products (10+ years).
Require high‑level proficiency automating system administration using Microsoft PowerShell.
Extensive hands‑on experience with supporting and automating the distribution and configuration of Windows PC applications and mobile apps to Apple devices.
Extensive experience with a major Endpoint Management Platform (KACE, SCCM, BigFix, Tanium, etc.).
Experience with deploying applications and client configurations using major virtual desktop platforms: VMware View, Citrix, Microsoft RDS.
Senior‑level experience with application support, security, and technical documentation.
Experience supporting Cloud‑based SaaS solutions, such as Microsoft M365, Azure VDI.
5+ years of experience in ITIL Framework required.
Preferred certifications: Microsoft Solutions Associate, ITIL Foundation, MCP, Azure Professional, Security+, VMware, ServiceNow.
Physical Requirements & Work Environment
Requires repetitive movement.
Requires travel to branch locations.
Requires sitting for prolonged periods of time.
Requires lifting up to 50 lbs.
Requires using hands to handle, control or feel objects; hearing, speaking, bending, squatting, and speaking.
Office setting with controlled temperature.
Proper at‑home work setup for remote work capabilities.
Additional Requirements
Professional business attire.
Ability to work evenings, weekends and holidays as needed.
As part of the bank’s internal control systems, employees holding sensitive positions are required to be absent from their duties for a minimum of
two
consecutive weeks each year. This position has been deemed to meet the test for a sensitive position, and therefore you will be required to meet the minimum absence requirement each and every year.
This job description is not intended to be all‑inclusive, and employees will be required to perform additional related work duties as assigned by their immediate supervisor and/or management.
Farmers & Merchants Bank of Long Beach reserve the right to revise or change job duties and responsibilities as the need arises. This job description does not constitute a written or implied contract of employment.
November 20, 2025
#J-18808-Ljbffr