Workstation Endpoint Mac Engineer

Clearance Level
Systems Engineering
Rockville, Maryland

REQ#: RQ74148 Workstation Endpoint Mac Engineer (Open)

Travel Required: None
Public Trust: NACLC (T3)
Requisition Type: Regular
Job Description

We are seeking a Mac Workstation Endpoint Engineer to support the National Institutes of Allergy and Infectious Diseases (NIAID) in Rockville, MD. As a Mac Workstation Endpoint Engineer, you will collaborate with stakeholders to manage configurations, administer and secure macOS workstations and virtual machines using Jamf Pro and additional technologies, and provide Tier 3 support for NIAID’s workstation environment.

You will work closely with a team of innovative and savvy engineers to support endpoint configuration administration, software deployment, incident troubleshooting and remediation with many tools and technologies. Your focus will be on enterprise-wide management of macOS devices, using a variety of tools and systems. In addition, you’ll be involved in the overall operations and engineering of an endpoint environment that includes macOS, Windows 10, Linux, and Citrix. You’ll help support our operations and processes, and leverage tools and technologies, such as Configuration Profiles, FileVault, BASH, Active Directory, BitLocker, Group Policy, MBAM, and PowerShell to proactively support the Mac and Windows environments. You will be supporting enterprise endpoint management solutions while providing technical guidance and expertise to other technical groups, including cybersecurity, scientific technologies, and field support.

To be successful in this role, you will like being a part of a team and be capable of working with others to enable how we get from where we are to where we want to be.  

**Employees on NIAID are currently working remotely full time but will be required to work in Rockville, MD once COVID restrictions are lifted.

What GDIT Can Offer You

  • Opportunity to participate in a transformative undertaking.
  • Opportunity to stay at the forefront of macOS and Windows 10 endpoint administration and support. 
  • See the business impact of technology. 
  • Ability to expand your enterprise endpoint management knowledge and adoption of macOS, Windows, Linux, Citrix and other technologies.

In this role, a typical day will include:

  • Collaborating with other Mac and Windows engineers and stakeholders in implementing solutions to optimize administration and support of workstation endpoints. 
  • Contributing to the technical roadmap for the organization and brainstorming new technical solutions.
  • Collaborating with colleagues and other stakeholders to perform process, software and hardware testing, provide feedback, and assist in documentation.
  • Using tools, such as Jamf Pro, BASH, Active Directory, PowerShell, MECM, MBA, and GPO to effectively manage and support macOS and Windows endpoints.
  • Troubleshooting and supporting Microsoft (Office) 365 products.
  • Packaging and deploying software to macOS and Windows endpoints.
  • Remediating configuration management baseline and policy non-compliance and resolve security vulnerabilities.
  • Creating provisioning workflows (imaging) for new and redeployed workstations. (Policy deployments for macOS and task Sequences in Windows).
  • Creating macOS and Windows 10 OS update and upgrade workflows for deployment and self-service in Jamf Pro and MECM.
  • Investigating new technologies for workstations, management and security. Identify and work to implement ways to automate workflows individually and as part of a team.
  • Providing tier 3 support to Customer Service Branch help desk and technicians to analyze and troubleshoot workstation endpoint issues.

Required Qualifications:

  • BS/BA degree or equivalent and/or minimum five years of experience or work experience supporting macOS 10.14+ devices in an enterprise environment of 500 or more devices.
  • Experience supporting Windows 10 in an enterprise environment, including familiarity with basic Windows administration and troubleshooting.
  • Minimum 4 year of experience packaging and/or deploying software for macOS.
  • Ability to use a wide variety of technologies to support macOS endpoints: Configuration Profiles, FileVault, BASH (or zsh), and Mac management and MDM solution like Jamf.
  • Good understanding of programming languages for macOS environment, such as BASH, zsh, and/or Python.
  • Must be able to obtain a NIH Public Trust.

Desired Qualifications:

  • Able to clearly present ideas to both technical and non-technical users and staff to further the adoption of macOS and Windows 10 administration strategies.
  • Extensive knowledge about PCs (desktops, laptops, hybrids) including BIOS configuration, drivers, and firewalls.
  • Experience using Microsoft Endpoint Manager / MECM / SCCM for Windows administration.
  • Experience implementing CIS benchmark configurations (or similar, such as STIG) for Windows 10 and macOS security.
  • Experience with Linux OS (RHEL/CentOS and Ubuntu a plus).
  • Experience with YAML, Ansible, Puppet or Salt
  • Ability to use a wide variety of technologies to support Windows 7/10 endpoints: Microsoft BitLocker Administration and Monitoring, Group Policy Management, Windows Firewall, PowerShell.
  • Good understanding of PowerShell programming language for Windows environments.



Opportunity Owned

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.