Sr. Endpoint Architect II (6532)

MetroStar•Washington, DC

23h•$147,000 - $193,000

About The Position

As a Sr. Endpoint Architect II, you will design, engineer, and sustain secure Windows, macOS, and mobile endpoint environments supporting a high-visibility, mission-critical customer. This role blends architectural ownership with hands-on execution, requiring you to deliver scalable, resilient, and compliant endpoint solutions in classified, high-security environments. You will play a critical role in driving operational stability, accelerating delivery, and enabling mission success across the federal government through disciplined engineering and immediate contribution within an Agile execution model. We know that you can’t have great technology services without amazing people. At MetroStar, we are obsessed with our people and have led a two-decade legacy of building the best and brightest teams. Because we know our future relies on our deep understanding and relentless focus on our people, we live by our mission: A passion for our people. Value for our customers. If you think you can see yourself delivering our mission and pursuing our goals with us, then check out the job description below!

Requirements

Active Top Secret security clearance with SCI eligibility required.
Required technical certifications include Microsoft MD-102 and Security+.
Possess DoD 8140 certification aligned to the 451 System Administrator work role, such as Security+, Cloud+, SSCP, CASP+, or CISSP.
7+ years of experience in IT with a primary focus on endpoint and client device architecture, engineering, and management across Windows 11, macOS Sequoia and Tahoe, and Apple iOS environments
Demonstrated experience designing and managing the full lifecycle of endpoint devices, including provisioning, configuration, compliance enforcement, maintenance, and decommissioning at enterprise scale.
Hands-on experience engineering OS imaging solutions, patch management strategies, performance optimization, and vulnerability remediation within complex enterprise environments
Extensive experience providing Tier 3 and escalation support, including advanced troubleshooting, root cause analysis, and implementation of long-term engineering solutions.
Hands-on experience architecting, optimizing and operating endpoint management platforms, such as Microsoft Endpoint Configuration Manager, Microsoft Intune, Jamf, Tanium, or BigFix, with a focus on scalability, automation, and security.
Bachelor’s degree in an IT-related field is preferred. Relevant experience may substitute for education requirements.
Ability to contribute immediately with minimal ramp-up in a mission-critical, high-visibility operational environment.
This position is designated as essential personnel supporting continuity of operations and may require work during government shutdowns, emergencies, or other critical situations.

Responsibilities

Lead the design, engineering, and sustainment of enterprise endpoint environments
Manage endpoint imaging, patching, vulnerability remediation, and full device lifecycle processes
Support, optimize, and scale enterprise endpoint management platforms (e.g., MECM, Intune, Jamf)
Resolve complex Tier 3 endpoint issues in support of service desk operations
Drive automation, standardization, and performance improvements across endpoint operations
Integrate endpoint solutions with identity, network, and cybersecurity systems aligned to Zero Trust principles
Participate in Agile execution and contribute to iterative delivery of secure solutions
Maintain secure, compliant client environments in high-security settings
Communicate effectively with technical teams, stakeholders, and leadership
Establish and maintain strong customer trust and confidence through technical expertise
Deliver innovative, mission-aligned solutions tailored to customer needs