Core Qualifications:
- Bachelor’s degree in IT, Cybersecurity, or related field preferred; equivalent experience acceptable
- Must possess an active or interim Top Secret security clearance
- 8 years of experience in IT, Endpoint Engineering, or Cybersecurity
- 6 years of experience performing engineering functions in enterprise environments
- Experience working under formal change control, audit, and security governance processes
Additional Qualifications:
- Experience with Microsoft Intune for provisioning, compliance, configuration profiles, and security policy enforcement
- Experience with Windows Autopilot for automated provisioning and device lifecycle management
- Experience with Group Policy Objects (GPO) for Windows configuration and policy delivery
- Experience with Entra ID / Active Directory integration, conditional access, and device/user association workflows
- Experience building and maintaining Windows workstation images
- Experience integrating Windows images with VDI, EDR, authentication tools, and logging agents
- Experience managing Windows patch orchestration, baseline enforcement, and configuration drift remediation
- Experience validating patch deployments and supporting rollback procedures
- Experience implementing passwordless authentication and hardware-backed credentials
- Experience configuring and maintaining Windows Event Logs and forwarding telemetry to SIEM/EDR platforms such as Microsoft Sentinel
- Experience monitoring enrollment, patch status, compliance posture, and operational failures across Windows endpoints
- Experience supporting audit readiness, forensic support, and technical validation reporting