City of Boston

Senior Endpoint Administrator

Req ID
Dpt of Innovation & Technology
Regular Full-Time
ASD-Mgmt Information Systems
Salary Min
Salary Max
Posting End Date
Contact Email


The City of Boston, Department of Innovation and Technology (DoIT), is seeking to hire a Senior Endpoint Administrator. This role implements and supports configuration management technology platforms and processes for management of devices across a broad and complex multi-domain endpoint environment to improve efficiency, security, and end user experience as well as standardize configuration to provide a consistent yet agile ecosystem. This role supports and manages solutions and applications for modern management of endpoints (e.g., Windows and Mac workstations, mobile devices) and other devices as applicable. This role will implement and maintain efficient/automated client support systems (e.g., device management, OS & application security updates, automated application installations, remote support systems). The Senior Endpoint Administrator position will manage the installation, configuration, testing, and maintenance of endpoint management tools. 


Brief Job Description:


This role develops automation to be utilized by front-line IT teams to accelerate deployment, patching, and standardized configuration of systems to enable those teams to focus on more specialized and less routine tasks. The Senior Endpoint Administrator will be engaged in solving highly complex technical issues, both independently and collaboratively with colleagues and vendors. This role will research and recommend standard configurations to optimize performance, develop and maintain knowledge based and endpoint system configuration documentation. This position will also record requests, issues, and solutions using service ticketing software and perform change management duties. This role will report to the Director of Cybersecurity Operations.



  • Configures and maintains endpoint management systems and MDM Solutions for Windows, MacOS, iOS, and Android devices.
  • Develops and maintains windows PC configurations corresponding with operating system releases, hardware manufacturer driver and BIOS updates, business use cases (including kiosks), and other reference build parameters.
  • Packages, configures, installs, and documents software deployments to Windows and Mac OS endpoint devices, based on established designs and standards.
  • Manages team of endpoint administrators.
  • Creates and maintains compliance profiles for endpoints to enforce baseline security standards.
  • Develops standardized deployment configurations and automated enrollment in MDM platforms for IOS and Android devices.
  • Works closely with IT Security to understand and enforce standards, detect configuration drift, and remediate vulnerabilities on all managed endpoints in compliance with applicable enterprise policies.
  • Deploys and manages enterprise-wide device encryption.
  • Performs configuration and change management activities in accordance with formal ITSM processes established for the department.
  • Collaborates with other members of the Infrastructure team and departmental IT teams to discover new areas to automate/ improve efficiency of operations.
  • Acts as point of escalation for both internal customers (e.g., Enterprise Applications) and departmental issues and incidents.
  • Creates reporting and other resources to give the team more visibility into device configuration and status.
  • Follows existing and recommend new processes, structures, and systems with a focus on simplification and optimization.
  • Creates and maintains documentation for support operations.
  • Performs related work as required.

Minimum Entrance Qualifications:

  • Five (5) years of full-time, or equivalent part-time, experience in information technology or cybersecurity. 
  • Certifications in either A+, Security+/Network+, OS, Azure, Intune and/or Microsoft Endpoint Configuration Manager are strongly preferred.
  • Expertise in endpoint management technology such as Microsoft Endpoint Configuration Manager, Microsoft Intune, Microsoft Autopilot, Google MDM, JAMF, and Tanium.
  • Expertise in configuring and troubleshooting Windows/Mac operating systems.
  • Deep experience managing, developing, and implementing enterprise endpoint management policies and compliance activities.
  • Proven ability to work with other teams to create and document new processes and procedures to meet security and compliance requirements.
  • Ability to leverage best practices and lessons learned of external organizations and academic institutions for improving endpoint management.
  • Ability to exercise good judgment and focus on detail as required by the job.


Boston Residency Required.



Union/SalaryPlan/Grade: MM1-8

Hours per week: 35 


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed