DMI is seeking a Cloud Service Desk Engineer to provide engineering-level support for cloud-connected endpoint and identity services at a federal agency client. In this role, you will handle complex and escalated engineering tickets related to cloud identity, conditional access, device compliance, and remote access — bridging Microsoft cloud services with enterprise endpoint management.

Duties and Responsibilities:

• Engineer and maintain conditional access policies and device compliance requirements in Microsoft Entra ID and Intune, ensuring cloud-connected endpoints meet security posture requirements before granting network access
• Support Microsoft Intune enrollment workflows for cloud-managed devices, including configuration profile deployment and compliance enforcement
• Implement and maintain passwordless authentication and hardware-backed credentials for privileged and sensitive accounts across cloud-connected environments
• Support VDI connectivity engineering, ensuring remote users on macOS and Windows platforms can securely access the virtual desktop environment
• Maintain device enrollment and identity association workflows, ensuring accurate asset inventory and user-to-device linkage across cloud and hybrid environments
• Configure and maintain logging and telemetry for cloud identity and access events; ensure audit trails are forwarded to enterprise SIEM platforms
• Resolve complex and escalated engineering tickets related to cloud services, identity, and access; produce runbooks and documentation for recurring issue patterns

Education and Years of Experience:  

• Bachelor's degree in Information Technology, Cybersecurity, or a related field preferred

• Education requirements may be waived based on professional experience, at the government’s discretion

• 8+ years of experience in Information Technology, Endpoint Engineering, or Cybersecurity

• 6+ years performing engineering (not help desk) functions in enterprise environments
• Hands-on experience with Microsoft Entra ID and Intune for cloud identity and device compliance management
• Experience engineering conditional access policies, role-based access, and identity-aware network access controls
• Experience supporting VDI environments and remote access connectivity for Windows and macOS users
• Experience implementing passwordless authentication and hardware-backed credentials in an enterprise environment
• Experience working under formal change control, audit, and security governance processes

Required Skills & Certifications: 

• Microsoft certifications in identity, endpoint management, or cloud administration
• Experience with Microsoft Sentinel for cloud identity and access telemetry
• Familiarity with hybrid identity environments integrating on-premises Active Directory with Entra ID

Clearance Requirements: Must possess or be eligible to obtain and complete a government security screening and/or a Secret security clearance.

• Active Top Secret (TS) clearance required.

 Citizenship Status Required: Must be a U.S. Citizen

Physical Requirements: None required for this position.

Location: Remote, US