IT Helpdesk Specialist

Terrestris Global SolutionsWashington, DC
$27 - $32Onsite

About The Position

This is an on-site position working Monday-Friday from 8:30 am to 5:00 pm at the Congressional Budget Office located in the Ford House Office Building in Washington, DC. At Terrestris, we leverage technology to create better mission outcomes through better human performance. We form strong client and team relationships through transparency and strive to create an environment where our team can let their excellence shine through. By finding, developing, and incorporating new ideas, we provide memorable services. Rooted in the USMC values of honor, courage, and commitment, Terrestris seeks to deliver extraordinary value to the American people by helping the Government become more efficient and effective.

Requirements

  • Must be U.S. citizen, or lawful permanent residents or H1B visa holder; must demonstrate work eligibility.
  • Ability to obtain favorable FBI criminal checks and be fingerprinted at the U.S. Capitol Police headquarters in Washington, DC prior to starting work under the contract.
  • Must be able to provide enterprise-level administration and support for macOS and Windows operating systems, including imaging, deployment, configuration management, and adherence to organizational security baselines.
  • Experience utilizing and supporting endpoint management and automation platforms such as Ivanti, KACE, Microsoft Intune, and JAMF to deploy software, manage devices, enforce policies, and streamline routine tasks.
  • The ability to manage and troubleshoot identity and access management services, including Microsoft Entra ID/Active Directory, multi-factor authentication (MFA), role-based access controls, and AWS-integrated identity solutions.
  • The ability to diagnose and resolve authentication, connectivity, and endpoint performance issues by analyzing system logs, Event Viewer data, macOS Console diagnostics, and other relevant monitoring tools.
  • The ability to coordinate cross-team incident response activities by working closely with the Service Desk, Network Operations, and Cybersecurity teams to ensure timely investigation, escalation, and remediation of technical issues.
  • A strong understanding of advanced system administration including patch management, baseline configuration, automated imaging processes, and the ability to troubleshoot and improve endpoint deployment workflows.
  • A strong understanding of cloud and hybrid environment management, with specific experience supporting AWS-hosted resources, identity services, and integrations between on-premises and cloud-based infrastructures.
  • A strong understanding of Zero Trust security principles, ensuring all endpoint, user, and network interactions follow the organization’s security, compliance, and configuration standards.
  • Clear and effective communication, including the ability to document technical procedures, create user-friendly guides, and mentor Level I technicians to enhance overall Service Desk capability.
  • Must have excellent customer service and problem-solving skills and the ability to prioritize tasks to meet tight deadlines while maintaining professionalism and responsiveness.

Nice To Haves

  • Bachelor’s degree in information technology, Computer Science, or a closely related field.
  • CompTIA Security+
  • Microsoft Certified: Endpoint Administrator Associate (or equivalent)
  • Apple Certified IT Professional
  • AWS Certified Cloud Practitioner (or higher-level AWS certification)
  • ITIL Foundation or equivalent certification in service management
  • Certified SysOps Administrator – Associate

Responsibilities

  • Managing requests through the help desk ticketing system.
  • Troubleshooting the most sophisticated hardware and software issues.
  • Providing guidance to less experienced specialists within the team.
  • Providing on-call daily office support.
  • Assisting with conference room technology support.
  • Working on IT projects in addition to the help desk function under certain circumstances.
  • Supporting specific projects/initiatives such as upgrades or improvement efforts, and strategic functions performed on an as-needed basis.
  • Inspecting computer equipment and preparing systems for deployment based on onboarding documentation and division-specific requirements, ensuring proper imaging, configuration, and inventory registration prior to delivery.
  • Deploying and configuring Windows desktops, macOS systems, and mobile devices following the imaging process, ensuring each device is properly inventoried, validated against security baselines, and ready for end-user delivery in accordance with division-specific requirements and IRM standards.
  • Installing, configuring, troubleshooting, and maintaining employee hardware, software, and peripheral components across Windows and macOS environments, including upgrades, patches, firmware updates, and approved security configurations to maintain compliance with Zero Trust and Defense-in-Depth standards.
  • Registering and configuring mobile devices (iOS, Android) within enterprise mobile device management (MDM) platforms; providing users with training and troubleshooting on authentication, MFA, and secure remote connectivity.
  • Loading and verifying software packages and configuration baselines through automated imaging and patching tools such as Ivanti EPM, KACE, or equivalent, ensuring accuracy and adherence to approved division templates.
  • Executing system verification tests by entering administrative commands and monitoring log output to validate image integrity, patch levels, and compliance with endpoint security policies; confirming logs are being received in accordance with guidance from Sentinel, VSOC, and other monitoring platforms.
  • Diagnosing and resolving complex system issues, including multi-factor authentication failures, identity anomalies, network connectivity problems, and endpoint irregularities, applying independent judgment to identify root causes and implement corrective actions while protecting sensitive data.
  • Supporting Tier I personnel by enforcing best practices, creating and validating SOPs, reviewing escalations, and collaborating on issue resolution.
  • Leveraging JAMF and Microsoft Intune for endpoint automation and configuration management.
  • Applying system administration expertise to analyze Windows Event Viewer and macOS Console logs, identifying error patterns, and developing evidence-based solutions to prevent recurrence.
  • Instructing users on the effective use of equipment, collaboration software, cloud services, and self-service resources; contributing to end-user documentation and knowledge base updates.
  • Coordinating activities with the Service Desk, Network Operations, Cloud Services, and Cybersecurity teams to ensure timely issue resolution and alignment with IRM standards.
  • Providing clear and timely communication on ticket status, updates, and resolutions through the official tracking system, voicemail, email, or direct user interaction in accordance with customer service performance metrics.
  • Replacing defective or obsolete hardware and software components, documenting all changes, and verifying asset records in accordance with CBO asset management procedures.
  • Identifying and analyzing recurring problem trends, developing mitigation strategies, and presenting findings and improvement recommendations to IRM management.
  • Ensuring rigorous application of information security and information assurance principles in all aspects of customer support, including encryption, data loss prevention, and secure credential handling.
  • Administering Microsoft Entra ID / Active Directory environments, including user account provisioning, group policy adjustments, and identity lifecycle management, in coordination with IAM governance.
  • Supporting macOS and iOS administration, including device enrollment, configuration profile deployment, FileVault management, and integration with enterprise authentication and compliance frameworks.
  • Performing secure drive sanitization and destruction using BitRaser or other approved tools, maintaining required documentation and certificates of destruction.
  • Using approved hard drive cloning devices and software to support workstation deployments, refreshes, data migrations, and recovery operations.
  • Recommending and implementing advanced remedial measures — such as driver updates, policy adjustments, or imaging corrections — to restore full functionality and prevent recurrence.
  • Coordinating reviews with the Chief Information Officer (CIO) / Deputy Chief Information Officer (DCIO) and automating solutions where feasible.
  • Implementing and documenting imaging strategies that leverage automation, scripting, and division-specific baselines to deliver secure, consistent workstation builds across all platforms.
  • Participating in patch management and vulnerability remediation cycles, ensuring timely updates and adherence to established configuration management policies; coordinating with Nessus scan findings to prioritize remediation of critical and high-severity vulnerabilities.
  • Collaborating with IRM technical leads (Cloud, Engineering, and Development teams) to assess environment readiness, validate permissions, and confirm that personnel maintain appropriate administrative access for Tier II and escalation functions.
  • Assisting in responding to outages, service disruptions, and other emergencies, including participation in incident response activities.

Benefits

  • health
  • financial
  • retirement benefits
  • paid leave
  • professional development
  • tuition assistance
  • work-life programs
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service