Director End User Computing Jobs in Reston, VA (NOW HIRING)

The EUT Specialist-_SME provides senior technical leadership for endpoint management services supporting the SEC Infrastructure Support Services (ISS) contract. This role ensures secure, reliable lifecycle operations for SEC endpoint platforms, including Windows devices, virtual endpoints, and mobile assets, in alignment with PWS requirements for compliance, operational readiness, and service quality. The SME leads design and enforcement of endpoint baselines, patching, vulnerability remediation, and policy controls while supporting modernization initiatives such as Microsoft Intune, Windows Autopilot, and Microsoft Defender for Endpoint. The position also drives cross-functional resolution of complex endpoint issues, maintains SOPs and documentation for audit readiness, and mentors technical staff to improve service performance and consistency.

PRIMARY RESPONSIBILITIES

Endpoint Lifecycle and Platform Operations

- Lead operations and maintenance for SEC-issued endpoints, including laptops, desktops, virtual computers, and mobile devices.

- Direct provisioning, configuration, and decommissioning activities across the full endpoint lifecycle in accordance with SEC standards.

- Oversee enterprise application packaging, deployment, and maintenance for baseline and mission-specific software.

- Manage preproduction endpoint environments to validate new configurations, updates, and releases before production deployment.

Security, Compliance, and Policy Governance

- Establish and maintain endpoint configuration baselines, compliance policies, and security controls for Windows and supported mobile platforms.

- Lead patch and vulnerability management activities, including remediation planning and closure reporting.

- Develop, maintain, and version-control endpoint SOPs, architecture artifacts, and operational documentation to support FISMA and audit readiness.

- Ensure endpoint operations align with SEC policy, zero-trust objectives, and approved change control processes.

Intune Engineering and Automation

- Serve as the technical SME for Microsoft Intune in Windows environments, including device configuration profiles, compliance policies, and application delivery.

- Lead Autopilot and endpoint onboarding workflows to improve deployment speed, user readiness, and provisioning consistency.

- Design and implement PowerShell and automation solutions to reduce manual effort, improve reliability, and standardize endpoint operations.

- Integrate endpoint management workflows with enterprise tooling and reporting processes to improve visibility and service performance.

Incident Resolution, Collaboration, and Service Improvement

- Lead complex troubleshooting for Autopilot enrollment failures, policy conflicts, application packaging issues, and endpoint compliance anomalies.

- Coordinate with security, infrastructure, service desk, and vendor teams to resolve escalated incidents and prevent recurrence.

- Provide technical mentorship and quality oversight to endpoint engineers and support personnel.

- Support endpoint SLA/operational reporting, including metrics for patch compliance, incident trends, lifecycle status, and service outcomes.

REQUIRED QUALIFICATIONS

Citizenship/Work Authorization: US Citizenship

Clearance: Ability to obtain and maintain SEC Public Trust (or higher if required).

Education: Bachelors in a relevant field (e.g., Information Technology, Computer Science, Engineering). Additional years of experience may be considered in lieu of degree.

Experience:

- 10+ years of experience in endpoint engineering and enterprise endpoint management within complex IT environments.

- Demonstrated subject matter expertise in Microsoft Intune for Windows endpoint administration and policy management.

- Demonstrated experience supporting multi-platform endpoint environments, including Windows and mobile/Apple ecosystems.

- Proven experience leading endpoint security, lifecycle management, troubleshooting, and documentation/SOP governance in regulated environments.

- Demonstrated experience leading endpoint modernization initiatives, including Windows Autopilot and Microsoft Defender for Endpoint.

Technical Skills:

- Microsoft Intune (Windows endpoint management, configuration profiles, compliance policies, and application delivery)

- Multi-platform endpoint administration across Windows and mobile/Apple ecosystem devices

- Windows lifecycle management and endpoint policy baselines

- Endpoint security controls and compliance policy governance

- Windows Autopilot

- Microsoft Defender for Endpoint

- PowerShell scripting and endpoint automation

- Enterprise application packaging and deployment

- Troubleshooting of enrollment failures, policy conflicts, and compliance anomalies

PREFERRED QUALIFICATIONS

- Experience supporting U.S. federal IT environments with FISMA, NIST, and zero-trust control implementation.

- Hands-on experience with co-management or migration strategies across Intune and legacy endpoint management platforms.

- Demonstrated success building endpoint operational dashboards and reporting integrations for compliance and SLA tracking.

- Strong experience leading cross-functional endpoint modernization efforts in large, distributed user environments.

- Advanced troubleshooting experience across identity, policy, and security tooling integrations impacting endpoint compliance.

- Microsoft Certified: Endpoint Administrator Associate (MD-102)

- Microsoft Certified: Security Operations Analyst Associate (SC-200)

- ITIL 4 Foundation

WORK ENVIRONMENT / OTHER

Operational Support: May require participation in on-call or surge support activities depending on operational needs.

Location: On-site at SEC HQ, Washington, DC.

Travel: As required per contract direction.

If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo - because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 - and moving faster than anyone else dares.

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.