Job Description

Focuses on securing all enterprise-managed endpoints through policy enforcement, compliance monitoring, device protection controls, and integration of UEM platforms with enterprise security systems.

Position requires on-site support.

Responsibilities may include, but are not limited to:

• Design and enforce compliance policies within Workspace One, Microsoft Intune, and/or Jamf.

• Oversee mobile security controls including device encryption, lost/stolen device workflows, and remote wipe/lock actions.

• Conduct security reviews for OS updates, CVEs, and platform changes.

• Work with security teams to integrate conditional access, certificate policies, and identity-based access controls.

• Develop automated compliance reporting using PowerShell or other scripting tools.

• Respond to escalated security incidents involving managed endpoints.

• Maintain documentation of security posture, SOPs, and enforcement standards.

Required Experience

• BS in IT or related field (preferred). Formal technical training, certifications, and/or additional experience may be substituted for the degree preference.

• Minimum of 2-4 years of experience in UEM administration with security responsibilities.

• Experience troubleshooting device compliance issues, policy conflicts, and non-compliance scenarios.

• Experience collaborating with enterprise security and engineering teams.

• Strong understanding of MDM/MAM security frameworks.

• Hands-on experience configuring compliance, encryption, device restrictions, and mobile security controls.

• Proficiency with PowerShell scripting for reporting and automation.

• Familiarity with identity systems, conditional access, and platform SSO.

• ITSM platform experience (BMC or ServiceNow).

Qualifications:

• Must obtain an agency public trust suitability determination prior to start date

• Must have strong analytical skills.

• Must be able to work with sensitive data in a controlled environment.

• Ability to support after-hours response for critical security issues.

• Ability to communicate effectively and efficiently with all levels of leadership.

• Must have excellent verbal and written communication and stakeholder-facing skills.

• Must be able to work independently and within a multi-disciplinary team to meet demanding deadlines in a fast-paced technology environment.

• Must maintain a high level of customer service for all support interactions.

• Experience with mobile threat defense platforms (MTD) is a plus.

• Experience supporting a complex Federal agency enterprise is a plus.

• Relevant security related certification(s) such as Security+, CASP+, Microsoft SC series, and/or Jamf 300+ are preferred.