Focuses on securing all enterprise-managed endpoints through policy enforcement, compliance monitoring, device protection controls, and integration of UEM platforms with enterprise security systems.

Position requires on-site support.

Responsibilities may include, but are not limited to:

·      Design and enforce compliance policies within Workspace One, Microsoft Intune, and/or Jamf.

·      Oversee mobile security controls including device encryption, lost/stolen device workflows, and remote wipe/lock actions.

·      Conduct security reviews for OS updates, CVEs, and platform changes.

·      Work with security teams to integrate conditional access, certificate policies, and identity-based access controls.

·      Develop automated compliance reporting using PowerShell or other scripting tools.

·      Respond to escalated security incidents involving managed endpoints.

·      Maintain documentation of security posture, SOPs, and enforcement standards.

Required Experience

·      BS in IT or related field (preferred). Formal technical training, certifications, and/or additional experience may be substituted for the degree preference.

·      Minimum of 2–4 years of experience in UEM administration with security responsibilities.

·      Experience troubleshooting device compliance issues, policy conflicts, and non-compliance scenarios.

·      Experience collaborating with enterprise security and engineering teams.

·      Strong understanding of MDM/MAM security frameworks.

·      Hands-on experience configuring compliance, encryption, device restrictions, and mobile security controls.

·      Proficiency with PowerShell scripting for reporting and automation.

·      Familiarity with identity systems, conditional access, and platform SSO.

·      ITSM platform experience (BMC or ServiceNow).

Qualifications:

·      Must obtain an agency public trust suitability determination prior to start date

·      Must have strong analytical skills.

·      Must be able to work with sensitive data in a controlled environment.

·      Ability to support after-hours response for critical security issues.

·      Ability to communicate effectively and efficiently with all levels of leadership.

·      Must have excellent verbal and written communication and stakeholder-facing skills.

·      Must be able to work independently and within a multi-disciplinary team to meet demanding deadlines in a fast-paced technology environment.

·      Must maintain a high level of customer service for all support interactions.

·      Experience with mobile threat defense platforms (MTD) is a plus.

·      Experience supporting a complex Federal agency enterprise is a plus.

·      Relevant security related certification(s) such as Security+, CASP+, Microsoft SC series, and/or Jamf 300+ are preferred.