Platform Engineering Team Lead

Responsibilities for this Position

Location: USA VA Arlington
Full Part/Time: Full time
Job Req: RQ213200

Type of Requisition:
Regular

Clearance Level Must Currently Possess:
None

Clearance Level Must Be Able to Obtain:
None

Public Trust/Other Required:
BI Full 6C (T4)

Job Family:
IT Infrastructure and Operations

Job Qualifications:

Skills:
Desktop Computers, Enterprise IT, Information Technology Management
Certifications:
None
Experience:
5 + years of related experience
US Citizenship Required:
Yes

Job Description:

Advance how our customers operate while you advance your career. Join GDIT as a Platform Engineering Team Lead and shape the future of FDIC's enduser computing environment. This role centers on image engineering, OS lifecycle management, endpoint protection, and advanced troubleshooting, ensuring secure, stable, and highperforming platforms across thousands of devices.

As the Platform Engineering Team Lead, you will guide a team of engineers responsible for core image development, OS baseline engineering, software packaging, endpoint protection technologies, and unified endpoint management. You will define technical direction, drive modernization, and ensure that every endpoint-physical or virtual-is reliable, secure, and aligned with FDIC standards.

MEANINGFUL WORK AND PERSONAL IMPACT

Your leadership will directly influence the security, stability, and performance of FDIC's enterprise endpoints. You will:

Lead the engineering team responsible for desktop/mobile OS engineering, image development, endpoint protection, and software distribution, ensuring consistent and secure enduser platforms.

Own the image lifecycle, including baseline creation, quarterly updates, validation, testing, and release management.

Collaborate with security teams, application owners, OEM vendors, and FDIC stakeholders to resolve complex endpoint issues and maintain compliance with FDIC policies.

Drive modernization efforts across OS baselines, secure configurations, automation, endpoint protection, and unified endpoint management.

Utilize advanced tools including Microsoft Intune, Windows 11 Modern Policies, MS Defender for Endpoint, CrowdStrike EDR, Fleet RMM, Netaphor SiteAudit, HP Web Jet Admin, Kofax Autostore, Token Vault, Wise Admin Studio, PSTools, Graph API, YubiKey Manager, and vSec:CMS Admin.

ROLE-SPECIFIC RESPONSIBILITIES

Image Engineering & OS Baseline Management

Develop, maintain, and version Core Images and Core Image profiles across multiple device models and OS versions.

Build and maintain desktop and mobile OS baseline configurations, including secure baselines aligned with DISA STIGs.

Create and maintain Group Policies, Modern Policies, scripts, and engineering documentation.

Define OS, application, encryption, and security requirements for all endpoint platforms.

Lead OS lifecycle management, including quarterly updates, validation, compatibility testing, and release planning.

Maintain offline OS installation media and support remote build processes.

Software Packaging & Distribution

Script, package, and test software for Windows and macOS using modern packaging tools.

Manage enterprise software deployment tools, selfservice portals, and automation workflows.

Support offline deployment methods when required.

Endpoint Protection Engineering

Oversee engineering, deployment, and troubleshooting of EPP/EDR agents (e.g., Defender, CrowdStrike, McAfee, Carbon Black).

Ensure endpoint protection consoles, policies, and modules are fully operational.

Support SOC workflows, log collection, and malware containment actions.

Platform Break Fix & Tier 3 Endpoint Support

Provide Tier 3 engineering support for escalated endpoint issues, including OS, application, patching, and configuration problems.

Partner with FDIC teams to resolve complex endpoint failures and performance issues.

Technology Roadmaps & Planning

Research and evaluate emerging endpoint technologies, imaging tools, and OS management capabilities.

Develop platform roadmaps and demographic user profiles to guide future engineering decisions.

Participate in quarterly architecture and engineering planning sessions.

WHAT YOU'LL NEED TO SUCCEED

Education: Bachelor of Science in Computer Science or related technical field, or equivalent experience.

Required Experience

5+ years of IT experience with a strong focus on: Microsoft Intune, Windows 11, Modern Policies

Image engineering and OS lifecycle management

Virtual Desktop environments

MS Defender for Endpoint and CrowdStrike EDR

Microsoft 365 applications

Enduser device engineering and support

Extensive knowledge of Windows Server, desktop applications, and Wintel hardware.

Experience with Cloud technologies and SaaS solutions.

Strong understanding of enduser platform management tools and processes.

Managed services experience preferred.

Required Technical Skills

Expertise in OS engineering, image engineering, Group Policies/Modern Policies, secure baselines, and endpoint protection engineering.

Proficiency with tools including Intune, CrowdStrike, Defender, Endpoint Privilege Management, Fleet RMM, Netaphor SiteAudit, HP Web Jet Admin, Kofax Autostore, Token Vault, Wise Admin Studio, PSTools, Graph API, YubiKey Manager, vSec:CMS Admin.

Strong scripting and automation skills (PowerShell preferred).

Experience with ServiceNow for ticketing, change control, and service delivery.

Required Skills & Abilities

Strong analytical and technical problemsolving skills.

Ability to communicate complex technical concepts clearly to varied audiences.

Ability to balance multiple priorities in a highdemand environment.

Effective collaboration with clients, IT leadership, staff, and vendors.

Preferred Skills

Experience with VDI technologies.

Experience with secure configuration frameworks (e.g., DISA STIGs).

Experience with automation/orchestration for software distribution and remediation.

Location

On Customer Site - Arlington, VA (onsite requirement)

U.S. Citizenship Required

GDIT IS YOUR PLACE:

401K with company match
Comprehensive health and wellness packages
Internal mobility team dedicated to helping you own your career
Professional growth opportunities including paid education and certifications
Cutting-edge technology you can learn from
Rest and recharge with paid vacation and holidays

The likely salary range for this position is $127,500 - $172,500. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours:
40

Travel Required:
Less than 10%

Telecommuting Options:
Onsite

Work Location:
USA VA Arlington

Additional Work Locations:

Total Rewards at GDIT:
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Join our Talent Community to stay up to date on our career opportunities and events at
gdit.com/tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

PI281718277

Advance how our customers operate while you advance your career. Join GDIT as a Platform Engineering Team Lead and shape the future of FDIC's enduser computing environment. This role centers on image engineering, OS lifecycle management, endpoint protection, and advanced troubleshooting, ensuring secure, stable, and highperforming platforms across thousands of devices.


As the Platform Engineering Team Lead, you will guide a team of engineers responsible for core image development, OS baseline engineering, software packaging, endpoint protection technologies, and unified endpoint management. You will define technical direction, drive modernization, and ensure that every endpoint-physical or virtual-is reliable, secure, and aligned with FDIC standards.



MEANINGFUL WORK AND PERSONAL IMPACT


Your leadership will directly influence the security, stability, and performance of FDIC's enterprise endpoints. You will:


Lead the engineering team responsible for desktop/mobile OS engineering, image development, endpoint protection, and software distribution, ensuring consistent and secure enduser platforms.


Own the image lifecycle, including baseline creation, quarterly updates, validation, testing, and release management.


Collaborate with security teams, application owners, OEM vendors, and FDIC stakeholders to resolve complex endpoint issues and maintain compliance with FDIC policies.


Drive modernization efforts across OS baselines, secure configurations, automation, endpoint protection, and unified endpoint management.


Utilize advanced tools including Microsoft Intune, Windows 11 Modern Policies, MS Defender for Endpoint, CrowdStrike EDR, Fleet RMM, Netaphor SiteAudit, HP Web Jet Admin, Kofax Autostore, Token Vault, Wise Admin Studio, PSTools, Graph API, YubiKey Manager, and vSec:CMS Admin.



ROLE-SPECIFIC RESPONSIBILITIES



Image Engineering & OS Baseline Management


Develop, maintain, and version Core Images and Core Image profiles across multiple device models and OS versions.


Build and maintain desktop and mobile OS baseline configurations, including secure baselines aligned with DISA STIGs.


Create and maintain Group Policies, Modern Policies, scripts, and engineering documentation.


Define OS, application, encryption, and security requirements for all endpoint platforms.


Lead OS lifecycle management, including quarterly updates, validation, compatibility testing, and release planning.


Maintain offline OS installation media and support remote build processes.



Software Packaging & Distribution


Script, package, and test software for Windows and macOS using modern packaging tools.


Manage enterprise software deployment tools, selfservice portals, and automation workflows.


Support offline deployment methods when required.



Endpoint Protection Engineering


Oversee engineering, deployment, and troubleshooting of EPP/EDR agents (e.g., Defender, CrowdStrike, McAfee, Carbon Black).


Ensure endpoint protection consoles, policies, and modules are fully operational.


Support SOC workflows, log collection, and malware containment actions.



Platform Break Fix & Tier 3 Endpoint Support


Provide Tier 3 engineering support for escalated endpoint issues, including OS, application, patching, and configuration problems.


Partner with FDIC teams to resolve complex endpoint failures and performance issues.



Technology Roadmaps & Planning


Research and evaluate emerging endpoint technologies, imaging tools, and OS management capabilities.


Develop platform roadmaps and demographic user profiles to guide future engineering decisions.


Participate in quarterly architecture and engineering planning sessions.



WHAT YOU'LL NEED TO SUCCEED



Education: Bachelor of Science in Computer Science or related technical field, or equivalent experience.



Required Experience


5+ years of IT experience with a strong focus on: Microsoft Intune, Windows 11, Modern Policies


Image engineering and OS lifecycle management


Virtual Desktop environments


MS Defender for Endpoint and CrowdStrike EDR


Microsoft 365 applications


Enduser device engineering and support


Extensive knowledge of Windows Server, desktop applications, and Wintel hardware.


Experience with Cloud technologies and SaaS solutions.


Strong understanding of enduser platform management tools and processes.


Managed services experience preferred.



Required Technical Skills


Expertise in OS engineering, image engineering, Group Policies/Modern Policies, secure baselines, and endpoint protection engineering.


Proficiency with tools including Intune, CrowdStrike, Defender, Endpoint Privilege Management, Fleet RMM, Netaphor SiteAudit, HP Web Jet Admin, Kofax Autostore, Token Vault, Wise Admin Studio, PSTools, Graph API, YubiKey Manager, vSec:CMS Admin.


Strong scripting and automation skills (PowerShell preferred).


Experience with ServiceNow for ticketing, change control, and service delivery.



Required Skills & Abilities


Strong analytical and technical problemsolving skills.


Ability to communicate complex technical concepts clearly to varied audiences.


Ability to balance multiple priorities in a highdemand environment.


Effective collaboration with clients, IT leadership, staff, and vendors.



Preferred Skills


Experience with VDI technologies.


Experience with secure configuration frameworks (e.g., DISA STIGs).


Experience with automation/orchestration for software distribution and remediation.



Location


On Customer Site - Arlington, VA (onsite requirement)


U.S. Citizenship Required



GDIT IS YOUR PLACE:


401K with company match
Comprehensive health and wellness packages
Internal mobility team dedicated to helping you own your career
Professional growth opportunities including paid education and certifications
Cutting-edge technology you can learn from
Rest and recharge with paid vacation and holidays


The likely salary range for this position is $127,500 - $172,500. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.



Scheduled Weekly Hours:
40



Travel Required:
Less than 10%



Telecommuting Options:
Onsite



Work Location:
USA VA Arlington



Additional Work Locations:



Total Rewards at GDIT:
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.


We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.


Join our Talent Community to stay up to date on our career opportunities and events at
gdit.com/tc.


Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

PI281718277