Device and Account Compliance Specialist
Stony Brook University, Stony Brook, NY, United States
Job Description – Device and Account Compliance Specialist (2601106)
Required Qualifications
Bachelor’s Degree (foreign equivalent or higher). In lieu of a degree, a combination of education and relevant experience totaling six (6) full‑time years may be considered.
Two years of full‑time experience in IT support (e.g., supporting computer and device hardware and software).
Experience with Multi‑Factor Authentication.
Preferred Qualifications
Advanced degree.
Experience with device compliance standards.
Experience working with an endpoint device manager.
Experience in a Higher Education environment or a government entity.
Experience working with a ticketing system such as TeamDynamix or Service Now.
Experience with cell phone setup and management.
Experience with Mobile Device Management.
Brief Description of Duties The Device & Account Compliance Specialist monitors and maintains the security and compliance of DoIT‑managed devices and user IT accounts. Using tools such as Mobile Device Management (MDM), JAMF, Intune, SailPoint, PeopleSoft, DUO, and SUNY Admin portals, the specialist proactively identifies devices and accounts that fall out of compliance—including outdated operating systems, missing security patches, compromised accounts, or improper access permissions. The specialist communicates directly with end users, provides guidance, and offers hands‑on support to remediate risks. They also manage the lifecycle of IT accounts across multiple systems, ensuring appropriate access based on roles and audit requirements, and coordinate the procurement, configuration, and deployment of mobile devices while maintaining compliance and security.
Duties Device Compliance and Remediation
Ensure compliance of all DoIT‑managed mobile devices, Windows, and Mac computers with the Information Security team’s security requirements.
Monitor device compliance using management tools such as Sassafras, Jamf, Quest KACE, and Intune.
Notify end users of identified compliance issues and lead remediation through email campaigns and escalation to appropriate teams.
Provision, configure, and maintain compliance tracking of university‑owned mobile devices, coordinating with vendors for orders, deliveries, and procurement updates.
Execute remote wipe actions using MDM for lost or stolen devices to protect university data.
Track all end‑user interactions in the ITSM, keeping tickets up to date with full interaction details.
Account Compliance and Remediation
Remediate compromised accounts following security procedures, restore access, and secure the system. Assist users whose accounts may have been compromised; disable accounts as needed and coordinate with administrators for terminations or other special circumstances.
Work with Information Security, Cloud Service Admins, Core Services Infrastructure, and other Systems Admins to coordinate development of security procedures and protocols.
Respond to ITSM tickets, phone calls, and shared mailbox requests for account support—including account creation/activation, inactivation, and password issues across systems such as NetID, PeopleSoft, Solar, Google Apps, SUNY Financials, and other relevant accounts.
Monitor accounts using tools including SailPoint IDM, ReACT Password Tool, PeopleSoft ERP, Active Directory & GCDS, SUNY Financial System Admin Portal, DUO MFA, and SUNY Admin Portals.
Provide guidance, perform warm transfers, and assist in resolving or escalating technical access issues.
Track all end‑user interactions in the ITSM with complete details of interactions and resolutions.
Documentation & Compliance Reporting
Develop, prepare, maintain, and refine documentation for device management, account provisioning, and access procedures—including SOPs for various university IT accounts, MFA accounts, and PeopleSoft ERP.
Maintain documentation to support audits, onboarding, and internal process consistency.
Generate quarterly usage and compliance reports, providing recommendations for device decommissioning or upgrades.
Develop and maintain device‑compliance processes, notify end users via email templates, and track campaign data such as emails sent, dates, responses, and remediation success rates.
Create and maintain documentation for university‑owned mobile devices, including setup, repair/loaner procedures, and MDM management.
Assist other DoIT teams with documentation for various systems, including user help instructions and website information.
All Other Duties as Assigned
Cooperate with other departmental technicians on out‑of‑compliance devices, test new mobile device procedures, and advise on device management profiles.
Special Notes
This is a full‑time appointment. FLSA Non‑Exempt position, eligible for overtime provisions.
The position is not eligible for sponsorship of work visas.
The role is approved to participate in SUNY’s hybrid telecommuting pilot program, allowing up to 5 remote days per pay period.
Stony Brook University is committed to excellence in diversity and an inclusive learning and working environment. All qualified applicants will receive consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, familial status, sexual orientation, gender identity or expression, age, disability, genetic information, veteran status, and all other protected classes under federal or state laws. If you need a disability‑related accommodation, please call the Office of Equity and Access (OEA) at (631) 632‑6280.
#J-18808-Ljbffr
Required Qualifications
Bachelor’s Degree (foreign equivalent or higher). In lieu of a degree, a combination of education and relevant experience totaling six (6) full‑time years may be considered.
Two years of full‑time experience in IT support (e.g., supporting computer and device hardware and software).
Experience with Multi‑Factor Authentication.
Preferred Qualifications
Advanced degree.
Experience with device compliance standards.
Experience working with an endpoint device manager.
Experience in a Higher Education environment or a government entity.
Experience working with a ticketing system such as TeamDynamix or Service Now.
Experience with cell phone setup and management.
Experience with Mobile Device Management.
Brief Description of Duties The Device & Account Compliance Specialist monitors and maintains the security and compliance of DoIT‑managed devices and user IT accounts. Using tools such as Mobile Device Management (MDM), JAMF, Intune, SailPoint, PeopleSoft, DUO, and SUNY Admin portals, the specialist proactively identifies devices and accounts that fall out of compliance—including outdated operating systems, missing security patches, compromised accounts, or improper access permissions. The specialist communicates directly with end users, provides guidance, and offers hands‑on support to remediate risks. They also manage the lifecycle of IT accounts across multiple systems, ensuring appropriate access based on roles and audit requirements, and coordinate the procurement, configuration, and deployment of mobile devices while maintaining compliance and security.
Duties Device Compliance and Remediation
Ensure compliance of all DoIT‑managed mobile devices, Windows, and Mac computers with the Information Security team’s security requirements.
Monitor device compliance using management tools such as Sassafras, Jamf, Quest KACE, and Intune.
Notify end users of identified compliance issues and lead remediation through email campaigns and escalation to appropriate teams.
Provision, configure, and maintain compliance tracking of university‑owned mobile devices, coordinating with vendors for orders, deliveries, and procurement updates.
Execute remote wipe actions using MDM for lost or stolen devices to protect university data.
Track all end‑user interactions in the ITSM, keeping tickets up to date with full interaction details.
Account Compliance and Remediation
Remediate compromised accounts following security procedures, restore access, and secure the system. Assist users whose accounts may have been compromised; disable accounts as needed and coordinate with administrators for terminations or other special circumstances.
Work with Information Security, Cloud Service Admins, Core Services Infrastructure, and other Systems Admins to coordinate development of security procedures and protocols.
Respond to ITSM tickets, phone calls, and shared mailbox requests for account support—including account creation/activation, inactivation, and password issues across systems such as NetID, PeopleSoft, Solar, Google Apps, SUNY Financials, and other relevant accounts.
Monitor accounts using tools including SailPoint IDM, ReACT Password Tool, PeopleSoft ERP, Active Directory & GCDS, SUNY Financial System Admin Portal, DUO MFA, and SUNY Admin Portals.
Provide guidance, perform warm transfers, and assist in resolving or escalating technical access issues.
Track all end‑user interactions in the ITSM with complete details of interactions and resolutions.
Documentation & Compliance Reporting
Develop, prepare, maintain, and refine documentation for device management, account provisioning, and access procedures—including SOPs for various university IT accounts, MFA accounts, and PeopleSoft ERP.
Maintain documentation to support audits, onboarding, and internal process consistency.
Generate quarterly usage and compliance reports, providing recommendations for device decommissioning or upgrades.
Develop and maintain device‑compliance processes, notify end users via email templates, and track campaign data such as emails sent, dates, responses, and remediation success rates.
Create and maintain documentation for university‑owned mobile devices, including setup, repair/loaner procedures, and MDM management.
Assist other DoIT teams with documentation for various systems, including user help instructions and website information.
All Other Duties as Assigned
Cooperate with other departmental technicians on out‑of‑compliance devices, test new mobile device procedures, and advise on device management profiles.
Special Notes
This is a full‑time appointment. FLSA Non‑Exempt position, eligible for overtime provisions.
The position is not eligible for sponsorship of work visas.
The role is approved to participate in SUNY’s hybrid telecommuting pilot program, allowing up to 5 remote days per pay period.
Stony Brook University is committed to excellence in diversity and an inclusive learning and working environment. All qualified applicants will receive consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, familial status, sexual orientation, gender identity or expression, age, disability, genetic information, veteran status, and all other protected classes under federal or state laws. If you need a disability‑related accommodation, please call the Office of Equity and Access (OEA) at (631) 632‑6280.
#J-18808-Ljbffr