Today
Secret
Unspecified
Unspecified
Engineering - Systems
Oxon Hill, MD (On-Site/Office)
Endpoint Engineer
Responsibilities:
Qualifications:
Required:
Desired:
Responsibilities:
- Lead the administration and engineering of a Microsoft endpoint management solution (e.g., Intune), including policy creation and management, application deployment, device compliance, and conditional access configurations.
- Design and implement hybrid identity solutions leveraging cloud-based directory services (e.g., Azure AD) and on-premises Active Directory for seamless identity management.
- Utilize cloud automation tools (e.g., Azure Automation) and endpoint management platforms to manage and secure cloud-based and on-premises workstations and servers, ensuring they are patched to correct levels.
- Develop and maintain cloud-based system templates and images for rapid deployment.
- Manage and maintain Windows Server and PC images in both cloud and on-premises environments.
- Identify, analyze, and resolve system problems with both short-term workarounds and long-term cloud-based solutions.
- Write advanced scripts (e.g., PowerShell) and leverage cloud scripting services (e.g., Azure Functions) to automate systems administration tasks across cloud and on-premises environments.
- Implement and manage a comprehensive endpoint management solution (e.g., Microsoft Endpoint Manager, combining Intune and SCCM).
- Design and implement cloud-based security solutions, including cloud security monitoring and management tools (e.g., Azure Security Center, AWS Security Hub).
- Provide guidance and work leadership to less-experienced cloud and systems engineers.
Qualifications:
Required:
- Ability to obtain a security clearance or government suitability (e.g., DHS EOD).
- BA or BS + 7 years of applicable experience in endpoint management and systems administration.
- 5+ years of experience supporting software packaging and patching using an endpoint management tool (e.g., SCCM).
- 5+ years of experience with modern device management platform administration (e.g., Intune Autopilot).
- Strong working knowledge of a comprehensive endpoint management solution (e.g., SCCM and Intune) to include device enrollment, policy management, application deployment, compliance enforcement, and conditional access.
- Solid understanding of virtualization platforms (e.g., VMware vCenter, Hyper-V).
- Functional understanding of database systems (e.g., Microsoft SQL Server) and Active Directory.
- Expertise in operating system deployment methodologies and tools (e.g., MDT, SCCM) including image management, package creation, task sequences, and OSD.
- Solid knowledge of scripting languages (e.g., PowerShell) to automate tasks and customize configurations.
- Expertise with security vulnerability management processes, including testing, approval, and deployment.
- Solid knowledge of Active Directory Security Groups, OUs, DNS, and Group Policy Object (GPO) management.
- Solid Windows troubleshooting skills.
- Strong understanding of networking concepts including VPN and certificate-based authentication.
- Relevant Microsoft Endpoint Administrator certification (or equivalent).
- Relevant certification in an endpoint management tool (e.g., SCCM).
Desired:
- ITIL v4 certification.
- Advanced Microsoft Endpoint Management certification (or equivalent).
- Microsoft 365 Modern Desktop Administrator Associate certification (or equivalent).
- Experience with modern device provisioning and deployment (e.g., Autopilot, Zero-Touch Deployment).
- Familiarity with cloud services, particularly Microsoft Azure or AWS.
group id: PRISMVA
