Skip to main content

  Return to list of career opportunities

Endpoint Engineer

Job ID
Job Location

More information about this job:


It's fun to work in a company where people truly BELIEVE in what they're doing!

We're committed to bringing passion and customer focus to the business.


The Endpoint Engineer – Mid provides support to the Defense Health Agency (DHA) at Fort Sam Houston in San Antonio, Texas.


Essential duties and responsibilities include the following. Other duties may be assigned.

Responsible for the integration of CNI Core Competencies into daily functions, including: commitment to integrity, knowledge/quality of work, supporting financial goals of the company, initiative/motivation, cooperation/relationships, problem analysis/discretion, accomplishing goals through organization, positive oral/written communication skills, leadership abilities, commitment to Affirmative Action, reliability/dependability, flexibility and ownership/accountability of actions taken.

Provides appropriate engineering and Tier 3 expertise to deliver forward-looking, compliant, engineered solutions for the MHS production environment for standard Application Integration, Application Security, Desktop Engineering and Service Monitoring functions that enable management to the desktop. 

Develops a standard framework for centrally deploying and supporting applications and systems within the DHA production environment, and provides a common system and monitoring framework and capability used by other teams to maintain applications and systems.

Application Integration

Engineer packages and tests software that supports the baseline OS for virtual and physical desktops throughout the DHA production environment, including a standardized administration, security and monitoring suite.

Conducts application packaging, deployment support and setting of baseline desktop applications.

Creates a centrally managed desktop architecture that adheres to DoD/DHA policies, tools and procedures used to maintain the DHA production environment.

Engineers and maintain the Enterprise Management solutions like Tanium and Microsoft SCCM Current Branch (CB) and SQL upgrade engineering packages.

Delivers and supports Tanium versions to the enterprise.

Creates new processes for modifying SCCM enterprise packages into Tanium packages, establishes new reporting processes using Tanium for the MHS/DHA.

Endpoint and Identity Security

Validates compliance with IA controls for baseline applications, products, solutions and systems within the DHA environments. 

Performs security risk analyses of systems and applications during the application and system engineering life cycle, identifying security vulnerabilities and mitigation techniques using IA controls, National Institute of Standards and Technology (NIST) standards, policies, procedures, configurations, Defense-in-depth, and patching.

Engineers tools and solutions used to verify IA compliance of the security posture of all systems managed by applicable teams.

Ensures compliance with corresponding DISA STIGs. 

Delivers updates to security configurations of monitoring and compliance tools used in the labs in accordance with DoD cyber security regulations and guidelines and industry best practices. 

Validates compliance with security controls used for new or existing applications and systems, and provides IA technical support and guidance as needed to assist the customer in following IA and NIST standards from the conceptual stage through piloting and testing.

Desktop/Endpoint Engineering

Engineers the desktop architecture deployed throughout the MHS production environment.

Maintains the desktop and Operating System images and library for the MHS, consisting of all baseline desktop image builds and approved software used within the organization.

Designs, builds and tests configuration items such as task sequences, group policy objects, images, applications, and in-place upgrades.

Provides the engineered solution for the Data at Rest (DAR) requirement. 

Provides the engineered solution for the kiosk requirement. 

Provides the engineered solution for the User Data/Profile Management requirement. 

Provides the mechanism to manage hardware peripherals used by the organization. 

Tests and validates new desktop software and virtualization of supported applications in the lab environment. 

Verifies the DHA standardized desktop environment is in compliance with all DISA security regulations and architectural requirements. 

Performs modernization for configuration items and solutions.

Mobile Engineering

Engineers solutions and standardizes mobile devices, mobile management servers, mobile OSs, mobile applications, and advanced wireless communication.

Service Monitoring Function

Engineers the monitoring systems, metrics, policies and alerting functions to validate MHS baseline applications, desktops and systems meet compliance standards and Service Level Agreements. 

Architects a centralized service monitoring capability E2E or ERS that is able to support the MHS Enterprise, and provide alerting capabilities to stakeholders.

Researches, designs, develops and tests operating systems-level software, compilers and network distribution software for medical, industrial, military, communications, aerospace, business, scientific, and general computing applications. 

Sets operational specifications, formulates and analyzes software requirements.

May design embedded systems software.

Applies principles and techniques of computer science, engineering and mathematical analysis.

Applications and Application Packaging

Designs and delivers applications and application packages using available enterprise management products and tools that provide scripting capabilities for MHS/DHA enterprise delivery.

Provides scripts and custom code utilized for developing applications and packaging. 

Manages application baselines and configurations and fully tests integration. 

Leverages VMware and virtual design and delivery models. 

Understands and integrates STIG settings into applications and packages for compliance. Provides IAVM compliance for applications and application.

Responsible for aiding in own self-development by being available and receptive to all training made available by the company.

Plans daily activities within the guidelines of company policy, job description and supervisor’s instruction in such a way as to maximize personal output.

Responsible for keeping own immediate work area in a neat and orderly condition to ensure safety of self and co-workers. Will report any unsafe conditions and/or practices to the appropriate supervisor and human resources. Will immediately correct any unsafe conditions as the best of own ability.


Bachelor's degree in Computer Science or a related field of study and a minimum of four (4) to six (6) years’ relevant IT experience, or equivalent combination of education / experience. IAT Level III certification IAW DOD 8570.01-M. Experience working in or with Defense Health Agency or other military medical environment. Experience leading or supporting one or more SCCM implementation projects.


Must be a US Citizen

ADP II Position of Trust prior to commencing work


IAT-II - one of the following: CCNA Security, CySA+, GICSP, GSEC, Security+ CE, or SSCP


Excellent oral and written communication skills


Ability to read, analyze and interpret general business periodicals, professional journals, technical procedures, or governmental regulations. Ability to write reports, business correspondence and procedure manuals. Ability to effectively present information and respond to questions from groups of managers, clients, customers and the general public.


Ability to work with mathematical concepts such as probability and statistical inference, and fundamentals of plane and solid geometry and trigonometry. Ability to apply concepts such as fractions, percentages, ratios and proportions to practical situations.


Ability to define problems, collect data, establish facts and draw valid conclusions. Ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with several abstract and concrete variables.


The physical demands described here are representative of those that must be met by an employee to perform successfully the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this job. Work is primarily performed in an office environment. Regularly required to sit. Regularly required use hands to finger, handle, or feel, reach with hands and arms to handle objects and operate tools, computer, and/or controls. Required to speak and hear. Occasionally required to stand, walk and stoop, kneel, crouch, or crawl. Must frequently lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, depth perception, and ability to adjust focus. Exposed to general office noise with computers printers and light traffic.

All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, age, marital status, pregnancy, genetic information, or other legally protects status.

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!

Category / Job Family