We are seeking a mid to senior level Endpoint Engineer with strong experience managing and securing modern devices across Windows and macOS within a Microsoft GCC High environment. This role will be responsible for endpoint configuration, compliance, vulnerability remediation, patching, and operational excellence across our device ecosystem. The ideal candidate has a solid technical foundation in Microsoft Intune, endpoint security, and Remote Monitoring & Management (RMM) tooling, with the ability to drive improvements in device reliability, compliance, and user experience.

• Operate confidently within a Microsoft GCC High environment.
• Manage and administer Microsoft Intune including device enrollment, configuration profiles, compliance policies, and application deployments.
• Collaborate with Cybersecurity & Risk Management team on vulnerability management activities, including identification, prioritization, remediation, and reporting of endpoint vulnerabilities.
• Manage patch lifecycle for Windows and macOS devices to ensure timely and secure updates.
• Develop and optimize endpoint governance, security configurations, and hardening baselines.
• Administer and support RMM tools (such as NinjaOne) for monitoring, remote support, automation, and device insights.
• Collaborate with Cybersecurity & Risk Management team to enforce endpoint security policies and ensure alignment with organizational standards.
• Perform troubleshooting and advanced support for Windows and macOS systems.
• Maintain documentation, SOPs, and operational standards for endpoint management.

Minimum Requirements

• 4–7 years of experience in endpoint administration and support (mid to senior level).
• Strong hands-on expertise with Microsoft Intune for Windows and macOS management.
• Experience with vulnerability management, patching strategies, and remediation workflows.
• Proficiency with Windows 10/11 and macOS operating systems at an administrative level.
• Experience with compliance policies, conditional access impacts, and endpoint security enforcement.
• Practical experience with RMM tools such as NinjaOne, including scripting, monitoring, and automation.
• Experience using ServiceNow or another enterprise ITSM platform for ticketing and workflow management.
• Strong analytical and troubleshooting skills.

Nice-to-Have Skills

• Experience with CMMC Level 2 compliance requirements.
• Experience with Azure Virtual Desktop (AVD) deployments and management.
• Microsoft 365 administration experience (Exchange Online, SharePoint, Teams, identity integration).
• Knowledge of Microsoft Defender suite (Defender for Endpoint, Antivirus, Attack Surface Reduction).
• Experience with a SIEM or security analytics platform such as Rapid7 InsightIDR, Sentinel, or similar.
• Scripting experience (PowerShell, Bash, or Python) for automation and tooling.
• MD-102 Endpoint Administrator certification.

Soft Skills

• Strong communication and documentation abilities.
• Ability to work cross-functionally with Security, Cloud, and Support teams.
• Ownership mindset and ability to drive initiatives independently.

The position is contingent upon candidate’s ability to meet physical and medical requirements as needed by the position; including compliance with all applicable federal, state, and local jurisdictional requirements.