Senior Systems Admin (Microsoft Endpoint Management)

About The Position

Requirements

• Bachelor's Degree OR additional FOUR (4) years' experience in lieu of Degree.
• Citizenship
• An ACTIVE and MAINTAINED "TOP SECRET" Federal or DoD security clearance and ability to obtain SCI.
• Minimum of SEVEN (7) years of experience in systems administration, endpoint management, or enterprise IT operations
• Hands-on expertise with Microsoft Intune/Endpoint Manager, Windows 10/11, and Microsoft 365 environments
• Experience supporting secure or compliance-driven environments (Federal Civilian, DoD, IC, or similar)
• Familiarity with Azure AD/Entra ID, device compliance, conditional access, and modern authentication
• Strong troubleshooting skills across identity, device, application, and policy layers
• Excellent communication, documentation, and stakeholder engagement skills

Nice To Haves

• Certifications
• MD‑102: Endpoint Administrator
• MS‑102: Microsoft 365 Administrator
• AZ‑104: Azure Administrator
• Security+
• Desired Additional Skills
• Experience with SCCM/ConfigMgr, Co‑Management, and Autopilot provisioning
• PowerShell scripting for automation and reporting
• Familiarity with federal security frameworks (NIST 800‑53, STIGs, RMF)
• Knowledge of vulnerability management and endpoint hardening best practices
• Experience with device analytics, telemetry, and monitoring (Log Analytics, Defender, Sentinel)
• Understanding of Zero Trust endpoint posture and compliance enforcement

Responsibilities

• Administer and optimize Microsoft Intune / Microsoft Endpoint Manager (MEM) for Windows, mobile, and specialty devices across federal environments.
• Manage device provisioning, enrollment, configuration profiles, compliance policies, conditional access, and security baselines.
• Deploy and maintain applications, patches, updates, and OS images using Intune, ConfigMgr (SCCM), Autopatch, and Autopilot.
• Oversee Windows workstation standards, hardening policies, and Zero‑Trust‑aligned endpoint security controls.
• Collaborate with cloud, identity, and security teams to integrate Azure AD/Entra ID, MFA, and modern authentication policies.
• Troubleshoot escalated endpoint issues related to performance, compliance, identity, connectivity, and application delivery.
• Ensure lifecycle management of endpoint devices, including monitoring, reporting, inventory management, and vulnerability mitigation.
• Produce and maintain documentation, SOPs, configuration baselines, and compliance artifacts supporting audits, ATO, or RMF processes.
• Support modernization initiatives such as cloud‑based endpoint management, automation, and infrastructure improvements.
• Provide senior‑level guidance and mentorship to junior system administrators and support teams.

Benefits

• Medical, Rx, Dental & Vision Insurance
• Personal and Family Sick Time & Company Paid Holidays
• Parental Leave
• 401(k) Retirement Plan
• Group Term Life and Travel Assistance
• Voluntary Life and AD&D Insurance
• Health Savings Account, Health Care & Dependent Care Flexible Spending Accounts
• Transit and Parking Commuter Benefits
• Short-Term & Long-Term Disability
• Tuition Reimbursement, Personal Development, Certifications & Learning Opportunities
• Employee Referral Program
• Corporate Sponsored Events & Community Outreach
• Care.com annual membership
• Employee Assistance Program
• Supplemental Benefits via Corestream (Critical Care, Hospital Indemnity, Accident Insurance, Legal Assistance and ID theft protection, etc.)
• Position may be eligible for a discretionary variable incentive bonus