Thank you for considering IT Concepts dba Kentro, where innovation drives opportunity and collaboration leads to success. Our dynamic community of experts is fully committed to advancing our customers' missions, fostering professional growth, and making a positive impact on our communities.
By joining our supportive community, you will find that Kentro is dedicated to your personal and professional development. Together, we can drive meaningful change, spark innovation, and achieve extraordinary milestones.
Kentro is hiring an experienced Senior Endpoint Engineer to support our VA-ESOM- End Point Support and Operations Monitoring contract across the United States. The VA is responsible for providing comprehensive onsite and remote support to IT customers across all VA Administrations and special program offices, including direct support of over 340,000 VA employees and thousands of contractors who use government-furnished IT equipment and infrastructure. The VA provides support staff across 100+ CONUS and OCONUS locations, including difficult-to-accommodate locales, such as high cost of living or under-supported economic areas, where VA offices or facilities may be located and require onsite services.
The Senior Endpoint Engineer provides technical leadership and operational oversight for enterprise desktop and endpoint services, supporting a large-scale, nationally distributed environment with over 650,000 endpoints. This role is responsible for defining endpoint standards, managing the full lifecycle of enterprise applications and operating system baselines, and ensuring reliability, security, and compliance across all supported platforms. The position serves as a Tier 4 escalation point, a technical authority for endpoint engineering, and a key contributor to enterprise modernization initiatives.
Location: Onsite Albany, NY
Key Responsibilities:
- Ensure system compliance, resilience, and uptime Develop, implement, and maintain endpoint standards for the United States Department of Veterans Affairs (VA) enterprise network, supporting more than 650,000 endpoints nationwide that includes desktops, laptops, and cloud infrastructure.
- Configure, deploy, and maintain operating systems using SCCM . Testing and validating Windows patches and updates across all 37 DDE-maintained enterprise baselines as well as BIOS and driver updates for all enterprise standardized hardware models.
- Configure Azure tenant administration, Intune policy and configuration management, Identity and Access Management (Entra ID), Microsoft 365, and Azure Virtual Desktop
- Oversee the full lifecycle of enterprise COTS and custom business applications, including software intake review, packaging, testing, deployment, monitoring, and ongoing sustainment.
- Perform quality analysis and quality control activities for VA OIT initiatives impacting VA endpoint devices.
- Respond to Tier 4 IT support tickets, resolving complex technical issues in an effective and timely manner.
- Develop and maintain system documentation to support operational processes and troubleshooting activities.
- Collaborate with external vendors during software development and integration phases to ensure successful deployment and compatibility within the VA environment.
- Evaluate emerging and future technology solutions and provide recommendations regarding feasibility, resource requirements, budget, and implementation timelines for inclusion in strategic plans.
- Identify opportunities for automation and develop scripts using Python, PowerShell, and Bash to improve operational efficiency. Identifying opportunities using modern automation method of Infrastructure as Code (IaC) and configuration management tools like Ansible for drift detection and correction using version control like GitHub to manage the scripts and resources.
- Perform security auditing in accordance with government compliance requirements, identifying and remediating vulnerabilities within the enterprise environment. Hardening configuration implementing industry-standard benchmarks from CIS or NIST.
- Configure and administer Cisco-based WAN and LAN networking components.
- Configure and maintain lab and test environments that mirror production systems to support comprehensive testing and validation.
- Manage lab hardware inventory, including hardware refreshes, decommissioning, intake, and configuration of new hardware models.
- Train and mentor new and junior staff members, supporting knowledge transfer and skills development.
- Coordinate with contracting staff to support training and integration within the agency environment.
- Participate in agency-wide Office of Information Technology (OIT) initiatives, including new technology integrations, national rollouts, modernization efforts, and system decommissioning initiatives such as MyHealthe kiosk modernization, EHRM baseline modernization, VCS national rollouts, Audiology Telehealth modernization, and IPv6 implementation.
Education & Experience
- Bachelor’s degree in information technology, Computer Science, Engineering, or a related field, or equivalent combination of education and experience. 8 years of relevant experience may be substituted for the degree requirement, resulting in a total of 18+ years of experience.
- 10+ years of progressive experience in enterprise endpoint, desktop, or systems engineering within a large, complex environment.
- 3+ years in a senior or lead role overseeing endpoint engineering, desktop standards, or enterprise device management.
- Demonstrated experience supporting large-scale, nationally distributed environments (100,000+ endpoints strongly preferred).
- Ability to operate effectively in highly regulated, mission-critical environments.
- Excellent written and verbal communication skills, capable of translating complex technical concepts to non-technical stakeholders.
- Proven ability to manage competing priorities and deliver results under pressure.
Technical Core Requirements:
Endpoint & Desktop Engineering
- Expert-level knowledge of Windows endpoint management in enterprise environments.
- Proven experience developing, maintaining, and enforcing enterprise desktop and endpoint standards.
- Hands-on expertise managing and sustaining multiple enterprise baselines (e.g., Windows OS baselines, security baselines, configuration baselines).
- Extensive experience testing, validating, and deploying Windows patches, cumulative updates, feature updates, and security fixes across multiple baselines.
Application Lifecycle Management
- End-to-end ownership of enterprise application lifecycle, including:
- Software intake and technical review
- Packaging (MSI, MSIX, App-V, or equivalent)
- Compatibility testing and validation
- Deployment at scale
- Monitoring, remediation, and long-term sustainment
- Experience supporting application deployments across diverse user personas and mission-critical environments.
Systems & Infrastructure Integration
- Strong understanding of endpoint integration with:
- Identity and access management
- Security tooling (EDR, AV, vulnerability management)
- Network and infrastructure services
- Ability to evaluate and integrate new endpoint technologies into existing enterprise architectures.
Operational & Support Requirements
- Acts as a Tier 4 escalation resource, resolving the most complex and high-impact endpoint issues.
- Performs root cause analysis and implements long-term corrective actions.
- Establishes and executes quality assurance (QA) and quality control (QC) processes for endpoint configurations, patches, and deployments.
- Ensures endpoint environments meet security, compliance, and audit requirements.
Leadership & Management Requirements
- Provides technical leadership and guidance to endpoint engineers, specialists, and contractors.
- Coordinates with contracting staff and vendors to support training, onboarding, and integration within the agency environment.
- Contributes to workforce development by defining best practices, documentation standards, and operational procedures.
- Serves as a trusted technical advisor to management and cross-functional teams.
Enterprise & Strategic Responsibilities
- Active participant in agency-wide IT initiatives, including:
- National technology rollouts
- Endpoint modernization programs
- New platform integrations
- Legacy system decommissioning
- Supports long-term endpoint strategy, roadmap planning, and continuous improvement efforts.
- Balances operational stability with innovation and modernization goals.
Clearance requirement:
- US Citizen or Green card holder
- Willing and able to get a Public Trust Suitability clearance
- Must meet updated ID requirements:
- If you do not currently meet the ID requirements outlined, you must be willing and able to update your current forms of ID in a timely manner to complete the suitability process successfully.
Health Requirements:
This Kentro position provides on-site support for the Department of Veterans Affairs. The Department of Veterans Affairs has facility-specific vaccination and testing requirements (please see the bulleted examples below). If chosen for this role, candidates may be required to show proof that their vaccinations and testing are current. The Kentro Suitability team will provide guidance on what the facility-specific health requirements for this position are, any documents needed, and how to request reasonable accommodation.
- Yearly Flu Vaccination
- Tuberculosis testing with a negative result
- Vaccination records or titer testing required for Measles Mumps and Rubella (MMR), Hepatitis B, and/or Varicella
The Company
We believe in generating success collaboratively, enabling long-term mission success, and building trust for the next challenge. With you as our partner, let’s solve challenges, think innovatively, and maximize impact. As a valued member of our team, you have the unique opportunity to work in a diverse range of technology and business career paths, all while supporting our nation and delivering innovative technology solutions. We are a close community of experts that pride ourselves on creating an environment defined by teamwork, dedication, and excellence.
We hold three ISO certifications (27001:2013, 20000-1:2011, 9001:2015) and two CMMI ML 3 ratings (DEV and SVC).
Industry Recognition
Growth | Inc 5000’s Fastest Growing Private Companies, DC Metro List Fastest Growing; Washington Business Journal: Fastest Growing Companies, Top Performing Small Technology Companies in Greater D.C.
Culture | Northern Virginia Technology Council Tech 100 Honoree; Virginia Best Place to Work; Washington Business Journal: Best Places to Work, Corporate Diversity Index Winner – Mid-Size Companies, Companies Owned by People of Color; Department of Labor’s HireVets for our work helping veterans transition; SECAF Award of Excellence finalist; Victory Military Friendly Brand; Virginia Values Veterans (V3); Cystic Fibrosis Foundation Corporate Breath Award
Benefits
We offer competitive benefits package including paid time off, healthcare benefits, supplemental benefits, 401k including an employer match, discount perks, rewards, and more. We invest in our employees – Every employee is eligible for education reimbursement for certifications, degrees, or professional development. Reimbursement amounts may fluctuate due to IRS limitations. We want you to grow as an expert and a leader and offer flexibility for you to take a course, complete a certification, or other professional growth and networking. We are committed to supporting your curiosity and sustaining a culture that prioritizes commitment to continuous professional development.
We work hard; we play hard. Kentro is committed to incorporating fun into every day. We dedicate funds for activities – virtual and in-person – e.g., we host happy hours, holiday events, fitness & wellness events, and annual celebrations. In alignment with our commitment to our communities, we also host and attend charity galas/events. We believe in appreciating your commitment and building a positive workspace for you to be creative, innovative, and happy.
Commitment Equal Opportunity Employment & VEVRAA
Kentro is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state or local law.
Kentro is strongly committed to compliance with VEVRAA and other applicable federal, state, and local laws governing equal employment opportunity. We have developed comprehensive policies and procedures to ensure our hiring practices align with these requirements.
As part of our VEVRAA compliance efforts, Kentro has established an equal opportunity plan outlining our commitment to recruiting, hiring, and advancing protected veterans. This plan is regularly reviewed and updated to ensure its effectiveness.
We encourage protected veterans to self-identify during the application process. This information is strictly confidential and will only be used for reporting and compliance purposes as required by law. Providing this information is voluntary and will not impact your employment eligibility.
Our commitment to equal employment opportunity extends beyond legal compliance. We are dedicated to fostering an inclusive workplace where all employees, including protected veterans, are treated with dignity, respect, and fairness.
How to Apply
To apply to Kentro Positions- Please click on the: “Apply for this Job” button at the bottom of this Job Description or the button at the top: “Application.” Please upload your resume and complete all the application steps. You must submit the application for Kentro to consider you for a position. If you need alternative application methods, please email careers@kentro.us and request assistance.
Accommodations
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable Accommodations may be made to enable qualified individuals with disabilities to perform the essential functions. If you need to discuss reasonable accommodations, please email careers@kentro.us.
#LI-SB2
#kentro
