Endpoint Specialist

Responsibilities:

• Manage and secure all Windows and Macintosh laptop endpoints, including system configuration, baseline enforcement, patch deployment, and lifecycle management.
• Implement and maintain Mobile Device Management (MDM) solutions to enforce endpoint security policies and compliance controls across macOS and Windows environments.
• Administer and secure Macintosh devices using JAMF (JAMF Pro preferred), including device enrollment, configuration profiles, software distribution, and compliance monitoring.
• Utilize enterprise patch management tools including IBM BigFix, WSUS, MECM, and related technologies to ensure timely deployment of operating system and third-party application updates.
• Oversee endpoint configuration standards, ensuring alignment with federal security requirements and organizational hardening guidelines.
• Monitor endpoint health, patch compliance, and vulnerability remediation through reporting dashboards and security tools.
• Collaborate directly with cybersecurity teams to ensure endpoint security controls, EDR tools, and patching strategies align with NTIA’s broader security posture and compliance framework.
• Support implementation and enforcement of endpoint security baselines, including encryption, access controls, MFA integration, and device policy enforcement.
• Troubleshoot and resolve issues related to device enrollment, patch failures, configuration drift, and security policy enforcement.
• Maintain documentation, SOPs, and reporting artifacts to support audits, compliance reviews, and operational transparency.
• Provide professional and timely support to NTIA users while maintaining secure and reliable endpoint operations.

Qualifications:

• Bachelor’s degree in Information Technology, Computer Science, or a related field OR equivalent combination of education and relevant experience.
• Minimum of 4 years of IT or endpoint administration experience.
• U.S. Citizenship required with an Active Secret clearance.
• Foundational experience managing macOS and Windows devices in an enterprise or federal environment.
• Familiarity with MECM, IBM BigFix, and macOS MDM frameworks (JAMF, Intune, or Kandji).
• Basic knowledge of scripting languages such as PowerShell, Bash, or Python for automation and remediation tasks.
• Understanding of system patching, software distribution, and compliance reporting.
• Strong communication skills, attention to detail, and commitment to maintaining secure and reliable endpoint operations.

Preferred Experience:

• CompTIA certifications such as A+, Network+, or Security+.
• Microsoft or IBM certifications related to MECM / BigFix administration.
• Apple Certified Support Professional (ACSP) or equivalent macOS certification.
• Experience managing Apple Business Manager and automated MDM enrollment workflows.
• Familiarity with Active Directory / Azure AD, Group Policy, and identity management for cross-platform devices.
• Experience with endpoint detection and response (EDR) tools and vulnerability management practices.
• Experience working within a federal or enterprise IT environment with stringent security compliance requirements.