Overview
Microsoft Intune Policy Audit & Remediation Consultant Jobs in Cape Town, South Africa at DLK Group
Role
Purpose:
The Consultant will lead a comprehensive audit, analysis, and remediation of Microsoft Intune policies within a complex enterprise environment. This role ensures optimal configuration, improved compliance, and alignment with Microsoft best practices. The ideal candidate is certified (MD-102 or SC-300) and capable of delivering high-impact policy remediation and documentation to elevate the security posture and operational effectiveness of the Intune environment.
Key Responsibilities:
Phase 1:
Audit & Risk Assessment
Perform a full discovery of the current Microsoft Intune (Endpoint Manager) environment: device enrolment, compliance, application deployments, and Conditional Access.
Assess the effectiveness and alignment of security policies including Bit Locker, Microsoft Defender ATP, MDM/MAM, and update ring configurations.
Review and assess RBAC roles, alerting mechanisms, reporting, and monitoring.
Identify misconfigurations, redundancies, and risks due to policy conflicts or outdated practices.
Compile a detailed audit report with risk analysis, policy gaps, and prioritised remediation recommendations.
Phase 2:
Remediation & Optimisation
Develop and implement a remediation and optimisation plan based on audit findings.
Streamline and standardise policies, enforce naming conventions, and optimise policy layering logic.
Enhance Conditional Access and RBAC roles to reflect Zero Trust principles.
Establish or refine monitoring dashboards, reporting metrics, and automated alerts.
Deliver knowledge transfer sessions, stakeholder briefings, and handover documentation.
Requirements
Required
Skills & Experience:
Certifications (Required):
Microsoft 365 Certified:
Endpoint Administrator Associate (MD-102) OR
Microsoft Certified:
Security Administrator Associate (SC-300)
Technical Expertise:
Extensive experience with Microsoft Intune (Endpoint Manager) and Azure AD.
Proficiency in Mobile Device Management (MDM), Mobile Application Management (MAM), device compliance, and configuration profiles.
Deep understanding of Conditional Access, RBAC, and Zero Trust architecture.
Familiarity with Microsoft Defender, Bit Locker, update rings, and endpoint security baseline
Power Shell scripting for reporting and policy automation (advantageous).
Audit & Governance Skills:
Proven experience in conducting security/configuration audits in enterprise environments.
Understanding of NIST, CIS, or Microsoft security baselines.
Ability to link technical issues to business risk and recommend prioritised remediation actions.
Soft Skills:
Strong interpersonal, verbal, and written communication skills.
Ability to communicate technical concepts to non-technical stakeholders.
Capable of producing clear documentation and delivering structured stakeholder presentations.
Able to work independently and deliver within strict deadlines.
Deliverables:
Intune environment inventory and compliance baseline.
Configuration gap analysis and risk assessment.
Remediation and optimisation roadmap.
Revised and newly implemented Intune policies
Updated Conditional Access and RBAC configurations
Enhanced monitoring dashboards and alerting rules
Final audit report and executive summary presentation
Knowledge transfer sessions and handover documentation
Engagement Requirements:
Consultant must provide own laptop/tools with secure connectivity
Availability to support approximately 100 hours over two defined project phases
Flexibility to attend remote and in-person sessions as required
Compliance with all client confidentiality, data protection, and security policies
Title: Microsoft Intune Policy Audit & Remediation Consultant
Company: DLK Group
Location: Cape Town, South Africa
Category: IT/Tech (Cybersecurity, IT Support, IT Consultant)
