Endpoint Specialist

Endpoint Specialist

Expression is seeking a mission-driven Endpoint Specialist to support the National Telecommunications and Information Administration (NTIA). This role is responsible for managing and securing all Windows and Macintosh laptop endpoints across the enterprise ensuring proper configuration patch management operating system updates and compliance with federal cybersecurity standards. The Endpoint Specialist will implement and enforce mobile device management (MDM) policies administer enterprise patching platforms and collaborate closely with cybersecurity teams to ensure endpoint security controls align with NTIAs overall security posture.

The ideal candidate brings hands-on expertise administering macOS devices through JAMF and demonstrates proficiency with enterprise patching technologies such as BigFix WSUS MECM and related tools in a secure federal environment.

Location and Clearance

• Boulder CO
• Active Secret or Top Secret clearance required (U.S. Citizenship required)

Responsibilities

• Manage and secure all Windows and Macintosh laptop endpoints including system configuration baseline enforcement patch deployment and lifecycle management.
• Implement and maintain Mobile Device Management (MDM) solutions to enforce endpoint security policies and compliance controls across macOS and Windows environments.
• Administer and secure Macintosh devices using JAMF (JAMF Pro preferred) including device enrollment configuration profiles software distribution and compliance monitoring.
• Utilize enterprise patch management tools including IBM BigFix WSUS MECM and related technologies to ensure timely deployment of operating system and third-party application updates.
• Oversee endpoint configuration standards ensuring alignment with federal security requirements and organizational hardening guidelines.
• Monitor endpoint health patch compliance and vulnerability remediation through reporting dashboards and security tools.
• Collaborate directly with cybersecurity teams to ensure endpoint security controls EDR tools and patching strategies align with NTIAs broader security posture and compliance framework.
• Support implementation and enforcement of endpoint security baselines including encryption access controls MFA integration and device policy enforcement.
• Troubleshoot and resolve issues related to device enrollment patch failures configuration drift and security policy enforcement.
• Maintain documentation SOPs and reporting artifacts to support audits compliance reviews and operational transparency.
• Provide professional and timely support to NTIA users while maintaining secure and reliable endpoint operations.

Qualifications

• Bachelors degree in Information Technology Computer Science or a related field OR equivalent combination of education and relevant experience.
• Minimum of 4 years of IT or endpoint administration experience.
• U.S. Citizenship required with an Active Secret clearance.
• Foundational experience managing macOS and Windows devices in an enterprise or federal environment.
• Familiarity with MECM IBM BigFix and macOS MDM frameworks (JAMF Intune or Kandji).
• Basic knowledge of scripting languages such as PowerShell Bash or Python for automation and remediation tasks.
• Understanding of system patching software distribution and compliance reporting.
• Strong communication skills attention to detail and commitment to maintaining secure and reliable endpoint operations.

Preferred Experience

• CompTIA certifications such as A Network or Security.
• Microsoft or IBM certifications related to MECM / BigFix administration.
• Apple Certified Support Professional (ACSP) or equivalent macOS certification.
• Experience managing Apple Business Manager and automated MDM enrollment workflows.
• Familiarity with Active Directory / Azure AD Group Policy and identity management for cross-platform devices.
• Experience with endpoint detection and response (EDR) tools and vulnerability management practices.
• Experience working within a federal or enterprise IT environment with stringent security compliance requirements.

Benefits

Expression offers highly competitive salaries performance-based incentives and additional benefits such as:

• 401k matching
• PPO and HDHP medical/dental/vision insurance
• Education reimbursement up to $10000/yr
• Complimentary life insurance
• Generous rollover PTO and 11 days of holiday leave

About Expression

Founded in 1997 and headquartered in Washington DC Expression provides data fusion data analytics AI/ML software engineering information technology and electromagnetic spectrum management solutions to the U.S. Department of Defense Department of State and national security community.

Our culture emphasizes creating immediate and sustainable value for our clients through agile delivery of tailored solutions and constant engagement. We were ranked #1 on the Washington Technology Fast 50 list of fastest-growing small business Government contractors and recognized as a Top 20 Big Data Solutions Provider by CIO Review.

At Expression we ensure every team member has the tools and opportunities to grow while working with the newest technologies in the industry. We celebrate milestones accomplishments promotions and collaborative achievements that make our workplace engaging and rewarding.

Equal Employment Opportunity Statement

Expression is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. All qualified applicants will receive consideration for employment without regard to race color religion gender gender identity or expression sexual orientation national origin genetics disability age or veteran status.