Job Description
Position Summary
We are seeking a mid to senior level Endpoint Engineer with strong experience managing and securing modern devices across Windows and macOS within a Microsoft GCC High environment. This role will be responsible for endpoint configuration, compliance, vulnerability remediation, patching, and operational excellence across our device ecosystem. The ideal candidate has a solid technical foundation in Microsoft Intune, endpoint security, and Remote Monitoring & Management (RMM) tooling, with the ability to drive improvements in device reliability, compliance, and user experience.
Essential Duties and Responsibilities
- Operate confidently within a Microsoft GCC High environment.
- Manage and administer Microsoft Intune including device enrollment, configuration profiles, compliance policies, and application deployments.
- Collaborate with Cybersecurity & Risk Management team on vulnerability management activities, including identification, prioritization, remediation, and reporting of endpoint vulnerabilities.
- Manage patch lifecycle for Windows and macOS devices to ensure timely and secure updates.
- Develop and optimize endpoint governance, security configurations, and hardening baselines.
- Administer and support RMM tools (such as NinjaOne) for monitoring, remote support, automation, and device insights.
- Collaborate with Cybersecurity & Risk Management team to enforce endpoint security policies and ensure alignment with organizational standards.
- Perform troubleshooting and advanced support for Windows and macOS systems.
- Maintain documentation, SOPs, and operational standards for endpoint management.
Requirements
Minimum Requirements
- 4–7 years of experience in endpoint administration and support (mid to senior level).
- Strong hands-on expertise with Microsoft Intune for Windows and macOS management.
- Experience with vulnerability management, patching strategies, and remediation workflows.
- Proficiency with Windows 10/11 and macOS operating systems at an administrative level.
- Experience with compliance policies, conditional access impacts, and endpoint security enforcement.
- Practical experience with RMM tools such as NinjaOne, including scripting, monitoring, and automation.
- Experience using ServiceNow or another enterprise ITSM platform for ticketing and workflow management.
- Strong analytical and troubleshooting skills.
Nice-to-Have Skills
- Experience with CMMC Level 2 compliance requirements.
- Experience with Azure Virtual Desktop (AVD) deployments and management.
- Microsoft 365 administration experience (Exchange Online, SharePoint, Teams, identity integration).
- Knowledge of Microsoft Defender suite (Defender for Endpoint, Antivirus, Attack Surface Reduction).
- Experience with a SIEM or security analytics platform such as Rapid7 InsightIDR, Sentinel, or similar.
- Scripting experience (PowerShell, Bash, or Python) for automation and tooling.
- MD-102 Endpoint Administrator certification.
Soft Skills
- Strong communication and documentation abilities.
- Ability to work cross-functionally with Security, Cloud, and Support teams.
- Ownership mindset and ability to drive initiatives independently.
Special Note
The position is contingent upon candidate’s ability to meet physical and medical requirements as needed by the position; including compliance with all applicable federal, state, and local jurisdictional requirements.
