Skip to main content
Tallo logoTallo logo
Apply for this opportunity

This job application is on an outside website. Be sure to review the job posting there to verify it's the same.

Apply Offsite

Endpoint Security Engineer

Job

AAC Inc

Vienna, VA (In Person)

Full-Time

Posted 2 weeks ago (Updated 6 hours ago) • Actively hiring

Expires 7/25/2026

Review key factors to help you decide if the role fits your goals.
How is this calculated?
Pay Growth
?
out of 5
Not enough data
Not enough info to score pay or growth
Job Security
?
out of 5
Not enough data
Calculating job security score...
Total Score
74
out of 100
Average of individual scores

Were these scores useful?

Skill Insights

Compare your current skills to what this opportunity needs—we'll show you what you already have and what could strengthen your application.

Job Description

Focuses on securing all enterprise-managed endpoints through policy enforcement, compliance monitoring, device protection controls, and integration of UEM platforms with enterprise security systems. Position requires on-site support. Responsibilities may include, but are not limited to: Design and enforce compliance policies within Workspace One, Microsoft Intune, and/or Jamf. Oversee mobile security controls including device encryption, lost/stolen device workflows, and remote wipe/lock actions. Conduct security reviews for OS updates, CVEs, and platform changes. Work with security teams to integrate conditional access, certificate policies, and identity-based access controls. Develop automated compliance reporting using PowerShell or other scripting tools. Respond to escalated security incidents involving managed endpoints. Maintain documentation of security posture, SOPs, and enforcement standards. Required Experience BS in IT or related field (preferred). Formal technical training, certifications, and/or additional experience may be substituted for the degree preference. Minimum of 2-4 years of experience in UEM administration with security responsibilities. Experience troubleshooting device compliance issues, policy conflicts, and non-compliance scenarios. Experience collaborating with enterprise security and engineering teams. Strong understanding of MDM/MAM security frameworks. Hands-on experience configuring compliance, encryption, device restrictions, and mobile security controls. Proficiency with PowerShell scripting for reporting and automation. Familiarity with identity systems, conditional access, and platform
SSO. ITSM
platform experience (BMC or ServiceNow).
Qualifications:
Must obtain an agency public trust suitability determination prior to start date Must have strong analytical skills. Must be able to work with sensitive data in a controlled environment. Ability to support after-hours response for critical security issues. Ability to communicate effectively and efficiently with all levels of leadership. Must have excellent verbal and written communication and stakeholder-facing skills. Must be able to work independently and within a multi-disciplinary team to meet demanding deadlines in a fast-paced technology environment. Must maintain a high level of customer service for all support interactions. Experience with mobile threat defense platforms (MTD) is a plus. Experience supporting a complex Federal agency enterprise is a plus. Relevant security related certification(s) such as Security+, CASP+, Microsoft SC series, and/or Jamf 300+ are preferred.