Iss Governance Jobs in Silver Spring, MD (NOW HIRING)

Description

The End User Technology-Specialist provides technical leadership for endpoint management services supporting the SEC Infrastructure Support Services (ISS) contract. This role ensures secure, reliable lifecycle operations for SEC endpoint platforms, including Windows devices, virtual endpoints, and mobile assets, in alignment with PWS requirements for compliance, operational readiness, and service quality. The SME leads design and enforcement of endpoint baselines, patching, vulnerability remediation, and policy controls while supporting modernization initiatives such as Microsoft Intune, Windows Autopilot, and Microsoft Defender for Endpoint. The position also drives cross-functional resolution of complex endpoint issues, maintains SOPs and documentation for audit readiness, and mentors technical staff to improve service performance and consistency.

PRIMARY RESPONSIBILITIES

Endpoint Lifecycle and Platform Operations

- Lead operations and maintenance for SEC-issued endpoints, including laptops, desktops, virtual computers, and mobile devices.

- Direct provisioning, configuration, and decommissioning activities across the full endpoint lifecycle in accordance with SEC standards.

- Oversee enterprise application packaging, deployment, and maintenance for baseline and mission-specific software.

- Manage preproduction endpoint environments to validate new configurations, updates, and releases before production deployment.

Security, Compliance, and Policy Governance

- Establish and maintain endpoint configuration baselines, compliance policies, and security controls for Windows and supported mobile platforms.

- Lead patch and vulnerability management activities, including remediation planning and closure reporting.

- Develop, maintain, and version-control endpoint SOPs, architecture artifacts, and operational documentation to support FISMA and audit readiness.

- Ensure endpoint operations align with SEC policy, zero-trust objectives, and approved change control processes.

Intune Engineering and Automation

- Serve as the technical specialist for Microsoft Intune in Windows environments, including device configuration profiles, compliance policies, and application delivery.

- Lead Autopilot and endpoint onboarding workflows to improve deployment speed, user readiness, and provisioning consistency.

- Design and implement PowerShell and automation solutions to reduce manual effort, improve reliability, and standardize endpoint operations.

- Integrate endpoint management workflows with enterprise tooling and reporting processes to improve visibility and service performance.

Incident Resolution, Collaboration, and Service Improvement

- Lead complex troubleshooting for Autopilot enrollment failures, policy conflicts, application packaging issues, and endpoint compliance anomalies.

- Coordinate with security, infrastructure, service desk, and vendor teams to resolve escalated incidents and prevent recurrence.

- Provide technical mentorship and quality oversight to endpoint engineers and support personnel.

- Support endpoint SLA/operational reporting, including metrics for patch compliance, incident trends, lifecycle status, and service outcomes.

REQUIRED QUALIFICATIONS

Citizenship/Work Authorization: Must have US Citizenship

Clearance: Ability to obtain and maintain SEC Public Trust (or higher if required).

Education: Bachelors in a relevant field (e.g., Information Technology, Computer Science, Engineering). Additional years of experience may be substituted in lieu of degree

Experience:

- 5+ years of experience in endpoint engineering and enterprise endpoint management within complex IT environments.

- Demonstrated experience in Microsoft Intune for Windows endpoint administration and policy management.

- Demonstrated experience supporting multi-platform endpoint environments, including Windows and mobile/Apple ecosystems.

- Proven experience leading endpoint security, lifecycle management, troubleshooting, and documentation/SOP governance in regulated environments.

- Demonstrated experience leading endpoint modernization initiatives, including Windows Autopilot and Microsoft Defender for Endpoint.

Technical Skills:

- Microsoft Intune (Windows endpoint management, configuration profiles, compliance policies, and application delivery)

- Multi-platform endpoint administration across Windows and mobile/Apple ecosystem devices

- Windows lifecycle management and endpoint policy baselines

- Endpoint security controls and compliance policy governance

- Windows Autopilot

- Microsoft Defender for Endpoint

- PowerShell scripting and endpoint automation

- Enterprise application packaging and deployment

- Troubleshooting of enrollment failures, policy conflicts, and compliance anomalies

PREFERRED QUALIFICATIONS

- Experience supporting U.S. federal IT environments with FISMA, NIST, and zero-trust control implementation.

- Hands-on experience with co-management or migration strategies across Intune and legacy endpoint management platforms.

- Demonstrated success building endpoint operational dashboards and reporting integrations for compliance and SLA tracking.

- Strong experience leading cross-functional endpoint modernization efforts in large, distributed user environments.

- Advanced troubleshooting experience across identity, policy, and security tooling integrations impacting endpoint compliance.

- Microsoft Certified: Endpoint Administrator Associate (MD-102)

- Microsoft Certified: Security Operations Analyst Associate (SC-200)

- ITIL 4 Foundation

WORK ENVIRONMENT / OTHER

Operational Support: May require participation in on-call or surge support activities depending on operational needs.

Location: On-site at SEC HQ, Washington, DC.

Travel: As required per contract direction.

If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo — because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 — and moving faster than anyone else dares.

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

About Leidos

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com.

Pay and Benefits

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits.

Securing Your Data

Beware of fake employment opportunities using Leidos’ name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system – never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com.

If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.