Endpoint Specialist (Mac & Windows)

Title: Endpoint Specialist (Windows & Mac)
Location: Boulder, CO – Onsite
Terms: Full-time
Clearance: Active Secret or higher clearance required (U.S. Citizenship required)
Travel: Minimal; <10% anticipated

RESULTS. INNOVATION. VALUES. ACCOUNTABILITY.

That’s RIVA. Our employee-first approach has manifested a culture that attracts the best and brightest. By investing in people first and providing a flexible work environment, our employees have higher morale, higher productivity rates, and lower turnover. At RIVA, people are our #1 priority.

Program Overview

RIVA Solutions is supporting the National Telecommunications and Information Administration (NTIA) under the ISCOM Division to deliver mission-critical IT modernization and cybersecurity services. This effort focuses on enhancing the security, reliability, and efficiency of NTIA’s infrastructure—driving forward their mission of advancing broadband access, data-driven policymaking, and secure communications through modern digital tools and compliance with federal standards.

Position Overview

RIVA Solutions is seeking an Endpoint Specialist to support enterprise endpoint security and lifecycle management under the NTIA ISCOM contract.

This role is responsible for managing and securing all Windows and Macintosh laptop endpoints across the enterprise, ensuring proper configuration, patch management, operating system updates, and compliance with federal cybersecurity standards. The Endpoint Specialist will implement and enforce mobile device management (MDM) policies, administer enterprise patching platforms, and collaborate closely with cybersecurity teams to ensure endpoint security controls align with NTIA’s overall security posture.

The ideal candidate brings hands-on expertise administering macOS devices through JAMF and demonstrates proficiency with enterprise patching technologies such as BigFix, WSUS, MECM, and related tools in a secure federal environment.

Core Responsibilities

• Manage and secure all Windows and Macintosh laptop endpoints, including system configuration, baseline enforcement, patch deployment, and lifecycle management.
• Implement and maintain Mobile Device Management (MDM) solutions to enforce endpoint security policies and compliance controls across macOS and Windows environments.
• Administer and secure Macintosh devices using JAMF (JAMF Pro preferred), including device enrollment, configuration profiles, software distribution, and compliance monitoring.
• Utilize enterprise patch management tools including IBM BigFix, WSUS, MECM, and related technologies to ensure timely deployment of operating system and third-party application updates.
• Oversee endpoint configuration standards, ensuring alignment with federal security requirements and organizational hardening guidelines.
• Monitor endpoint health, patch compliance, and vulnerability remediation through reporting dashboards and security tools.
• Collaborate directly with cybersecurity teams to ensure endpoint security controls, EDR tools, and patching strategies align with NTIA’s broader security posture and compliance framework.
• Support implementation and enforcement of endpoint security baselines, including encryption, access controls, MFA integration, and device policy enforcement.
• Troubleshoot and resolve issues related to device enrollment, patch failures, configuration drift, and security policy enforcement.
• Maintain documentation, SOPs, and reporting artifacts to support audits, compliance reviews, and operational transparency.
• Provide professional and timely support to NTIA users while maintaining secure and reliable endpoint operations.

Minimum Qualifications

• Bachelor’s degree in Information Technology, Computer Science, or a related field OR equivalent combination of education and relevant experience.
• Minimum of 2 years of IT or endpoint administration experience.
• U.S. Citizenship required with an Active Secret clearance.
• Foundational experience managing macOS and Windows devices in an enterprise or federal environment.
• Familiarity with MECM, IBM BigFix, and macOS MDM frameworks (JAMF, Intune, or Kandji).
• Basic knowledge of scripting languages such as PowerShell, Bash, or Python for automation and remediation tasks.
• Understanding of system patching, software distribution, and compliance reporting.
• Strong communication skills, attention to detail, and commitment to maintaining secure and reliable endpoint operations.

Preferred Qualifications

• CompTIA certifications such as A+, Network+, or Security+.
• Microsoft or IBM certifications related to MECM / BigFix administration.
• Apple Certified Support Professional (ACSP) or equivalent macOS certification.
• Experience managing Apple Business Manager and automated MDM enrollment workflows.
• Familiarity with Active Directory / Azure AD, Group Policy, and identity management for cross-platform devices.
• Experience with endpoint detection and response (EDR) tools and vulnerability management practices.
• Experience working within a federal or enterprise IT environment with stringent security compliance requirements.

Salary: Up to $125,000 depending on experience

RIVA Benefits:

• Paid Time Off / Sick Leave
• Health, Dental, and Vision Coverage
• Life Insurance
• 401K Retirement Plan with Company Match
• HSA/FSA Spending Accounts
• Long- and Short-term Disability
• Pet Insurance
• Wellness Program Initiatives
• RIVA Flex (Flex Hours and Hybrid Work Support)
• Additional Perks & Workplace Benefits

Equal Opportunity Statement:
RIVA Solutions is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any protected class. If you need a reasonable accommodation to search for a job opening or to submit an online application, please email accommodations@rivasolutionsinc.com. Only messages left for this purpose will be returned.