Job Requirements
Reston, VA
Clearance Unspecified Polygraph not specified
Mid Level Career (5+ yrs experience)
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
Microsoft Subject Matter Expert (SME)
Company: Horizon Global Partners (HgP)
Division: Defense & Aerospace Services (DAS)
Location: Washington, DC (Hybrid)
Employment Type: Full-Time
Clearance Requirement: Active Top Secret (TS) Security Clearance Required
Position Summary
Horizon Global Partners (HgP) is seeking an experienced Microsoft Subject Matter Expert (SME) to support a Federal Government customer by engineering, securing, and managing enterprise Microsoft endpoint environments. The successful candidate will serve as the technical authority for Windows endpoint management, Microsoft Intune, Windows Autopilot, Group Policy, and Microsoft Defender for Endpoint while supporting secure endpoint lifecycle management, compliance, and Zero Trust initiatives.
This is an engineering-focused position supporting enterprise endpoint infrastructure—not a traditional desktop support role. The Microsoft SME will collaborate with Endpoint Engineering, Cybersecurity, Identity Management, and Cloud teams to design, implement, and maintain secure, compliant Microsoft endpoint solutions.
________________________________________
Position Responsibilities
Microsoft Endpoint Engineering
• Design, implement, and maintain secure Windows workstation images and endpoint baselines.
• Engineer standardized endpoint configurations for on-site, remote, and Virtual Desktop Infrastructure (VDI) users.
• Maintain Windows operating system standards and security baselines.
• Support endpoint lifecycle management, imaging, deployment, and version control.
Microsoft Intune Administration
• Administer Microsoft Intune for enterprise endpoint management.
• Configure device compliance policies, configuration profiles, application deployment, and endpoint security policies.
• Manage Windows device enrollment and compliance reporting.
• Support mobile device management (MDM) and mobile application management (MAM).
Windows Autopilot
• Configure and maintain Windows Autopilot deployments.
• Support zero-touch provisioning and secure device enrollment.
• Integrate Autopilot with Microsoft Entra ID and enterprise identity services.
• Troubleshoot provisioning and enrollment issues.
Group Policy & Endpoint Configuration
• Design and manage Group Policy Objects (GPOs).
• Implement endpoint security settings and configuration standards.
• Maintain Windows security baselines.
• Troubleshoot Group Policy processing and configuration issues.
Microsoft Defender for Endpoint
• Administer Microsoft Defender for Endpoint.
• Configure endpoint protection policies and attack surface reduction rules.
• Monitor endpoint health, security alerts, and remediation activities.
• Support endpoint threat investigations and incident response.
Identity & Security
• Support Microsoft Entra ID integration and Conditional Access.
• Implement passwordless authentication and hardware-backed credentials.
• Support Zero Trust endpoint security initiatives.
• Collaborate with cybersecurity teams to maintain compliance with organizational security requirements.
Documentation & Knowledge Transfer
• Develop and maintain:
o Endpoint engineering standards
o Intune administration documentation
o Windows Autopilot deployment procedures
o Group Policy documentation
o Endpoint security runbooks
o Knowledge base articles
• Conduct knowledge transfer sessions for engineering and Service Desk teams.
________________________________________
Required Qualifications
• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Engineering, or a related field (or equivalent experience).
• Minimum 8 years of Information Technology, Endpoint Engineering, or Microsoft Infrastructure experience.
• Minimum 5 years administering Microsoft enterprise endpoint environments.
• Extensive experience with Microsoft Intune.
• Experience implementing and supporting Windows Autopilot.
• Strong experience designing and managing Group Policy Objects (GPOs).
• Experience administering Microsoft Defender for Endpoint.
• Experience with Microsoft Entra ID and Active Directory.
• Experience supporting enterprise Windows workstation imaging and lifecycle management.
• Strong troubleshooting, documentation, and communication skills.
________________________________________
Required Technical Skills
• Microsoft Intune
• Windows Autopilot
• Microsoft Defender for Endpoint
• Microsoft Entra ID
• Active Directory
• Group Policy (GPO)
• Windows 11 Enterprise
• Microsoft 365
• Endpoint Manager
• Device Enrollment
• Endpoint Compliance
• Device Provisioning
• Windows Imaging
• Microsoft Defender XDR
• Conditional Access
• BitLocker
• PowerShell
• Windows Event Logs
• SIEM
• EDR
• Microsoft Sentinel
• Zero Trust Architecture
________________________________________
Required Credential
• Active Top Secret (TS) Security Clearance required.
________________________________________
Preferred Certifications
• Microsoft 365 Certified: Endpoint Administrator Associate
• Microsoft Certified: Identity and Access Administrator Associate
• Microsoft Certified: Security Operations Analyst Associate
• Microsoft 365 Certified: Administrator Expert
• CompTIA Security+
• ITIL Foundation v4
________________________________________
Preferred Experience
• Federal Government or DoD enterprise environments
• Microsoft Defender XDR
• Microsoft Sentinel
• Zero Trust Architecture
• NIST SP 800-53 compliance
• Endpoint Detection and Response (EDR)
• Enterprise device lifecycle management
• Windows security baseline engineering
________________________________________
Why Join Horizon Global Partners?
At Horizon Global Partners, you’ll support mission-critical Federal Government programs by engineering and securing enterprise Microsoft endpoint environments. You’ll collaborate with experienced infrastructure and cybersecurity professionals to deliver modern, secure, and scalable endpoint management solutions supporting critical government operations.
Company: Horizon Global Partners (HgP)
Division: Defense & Aerospace Services (DAS)
Location: Washington, DC (Hybrid)
Employment Type: Full-Time
Clearance Requirement: Active Top Secret (TS) Security Clearance Required
Position Summary
Horizon Global Partners (HgP) is seeking an experienced Microsoft Subject Matter Expert (SME) to support a Federal Government customer by engineering, securing, and managing enterprise Microsoft endpoint environments. The successful candidate will serve as the technical authority for Windows endpoint management, Microsoft Intune, Windows Autopilot, Group Policy, and Microsoft Defender for Endpoint while supporting secure endpoint lifecycle management, compliance, and Zero Trust initiatives.
This is an engineering-focused position supporting enterprise endpoint infrastructure—not a traditional desktop support role. The Microsoft SME will collaborate with Endpoint Engineering, Cybersecurity, Identity Management, and Cloud teams to design, implement, and maintain secure, compliant Microsoft endpoint solutions.
________________________________________
Position Responsibilities
Microsoft Endpoint Engineering
• Design, implement, and maintain secure Windows workstation images and endpoint baselines.
• Engineer standardized endpoint configurations for on-site, remote, and Virtual Desktop Infrastructure (VDI) users.
• Maintain Windows operating system standards and security baselines.
• Support endpoint lifecycle management, imaging, deployment, and version control.
Microsoft Intune Administration
• Administer Microsoft Intune for enterprise endpoint management.
• Configure device compliance policies, configuration profiles, application deployment, and endpoint security policies.
• Manage Windows device enrollment and compliance reporting.
• Support mobile device management (MDM) and mobile application management (MAM).
Windows Autopilot
• Configure and maintain Windows Autopilot deployments.
• Support zero-touch provisioning and secure device enrollment.
• Integrate Autopilot with Microsoft Entra ID and enterprise identity services.
• Troubleshoot provisioning and enrollment issues.
Group Policy & Endpoint Configuration
• Design and manage Group Policy Objects (GPOs).
• Implement endpoint security settings and configuration standards.
• Maintain Windows security baselines.
• Troubleshoot Group Policy processing and configuration issues.
Microsoft Defender for Endpoint
• Administer Microsoft Defender for Endpoint.
• Configure endpoint protection policies and attack surface reduction rules.
• Monitor endpoint health, security alerts, and remediation activities.
• Support endpoint threat investigations and incident response.
Identity & Security
• Support Microsoft Entra ID integration and Conditional Access.
• Implement passwordless authentication and hardware-backed credentials.
• Support Zero Trust endpoint security initiatives.
• Collaborate with cybersecurity teams to maintain compliance with organizational security requirements.
Documentation & Knowledge Transfer
• Develop and maintain:
o Endpoint engineering standards
o Intune administration documentation
o Windows Autopilot deployment procedures
o Group Policy documentation
o Endpoint security runbooks
o Knowledge base articles
• Conduct knowledge transfer sessions for engineering and Service Desk teams.
________________________________________
Required Qualifications
• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Engineering, or a related field (or equivalent experience).
• Minimum 8 years of Information Technology, Endpoint Engineering, or Microsoft Infrastructure experience.
• Minimum 5 years administering Microsoft enterprise endpoint environments.
• Extensive experience with Microsoft Intune.
• Experience implementing and supporting Windows Autopilot.
• Strong experience designing and managing Group Policy Objects (GPOs).
• Experience administering Microsoft Defender for Endpoint.
• Experience with Microsoft Entra ID and Active Directory.
• Experience supporting enterprise Windows workstation imaging and lifecycle management.
• Strong troubleshooting, documentation, and communication skills.
________________________________________
Required Technical Skills
• Microsoft Intune
• Windows Autopilot
• Microsoft Defender for Endpoint
• Microsoft Entra ID
• Active Directory
• Group Policy (GPO)
• Windows 11 Enterprise
• Microsoft 365
• Endpoint Manager
• Device Enrollment
• Endpoint Compliance
• Device Provisioning
• Windows Imaging
• Microsoft Defender XDR
• Conditional Access
• BitLocker
• PowerShell
• Windows Event Logs
• SIEM
• EDR
• Microsoft Sentinel
• Zero Trust Architecture
________________________________________
Required Credential
• Active Top Secret (TS) Security Clearance required.
________________________________________
Preferred Certifications
• Microsoft 365 Certified: Endpoint Administrator Associate
• Microsoft Certified: Identity and Access Administrator Associate
• Microsoft Certified: Security Operations Analyst Associate
• Microsoft 365 Certified: Administrator Expert
• CompTIA Security+
• ITIL Foundation v4
________________________________________
Preferred Experience
• Federal Government or DoD enterprise environments
• Microsoft Defender XDR
• Microsoft Sentinel
• Zero Trust Architecture
• NIST SP 800-53 compliance
• Endpoint Detection and Response (EDR)
• Enterprise device lifecycle management
• Windows security baseline engineering
________________________________________
Why Join Horizon Global Partners?
At Horizon Global Partners, you’ll support mission-critical Federal Government programs by engineering and securing enterprise Microsoft endpoint environments. You’ll collaborate with experienced infrastructure and cybersecurity professionals to deliver modern, secure, and scalable endpoint management solutions supporting critical government operations.
group id: 91140176