Key skills
AzureCloudPowerShellExpressAzure ADActive DirectoryIdentity ManagementSSOSingle Sign-OnRisk ManagementChange ManagementNetwork SecurityFirewall
About this role
Role Overview
- Designing and deploying Azure infrastructure components, including compute, storage, networking, identity, governance, and managing hybrid Office365 environments
- Architect and configure virtual networks (VNets), Network security groups (NSGs), Express Route, and private endpoints in Azure
- Create and maintain architecture diagrams
- Propose environmental improvements or impacts, when needed, using diagrams and risk management principles
- Managing Microsoft identity management tools like Active Directory, Azure AD, AD Connect, Duo, and Office 365
- Supporting Azure firewall and Windows Virtual Desktop (WVD) environments
- Maintain infrastructure that meets or exceeds CMMC Level 2 requirements, including proper handling of CUI
- Optimizing Windows Virtual Desktop (WVD) for cost, performance, rightsizing, reservations, savings plans, and security
- Writing and updating automation scripts using PowerShell or similar languages
- Understanding and configuring Azure Sentinel, including SIEM rules, correlations, and dashboards
- Setting up data loss prevention (DLP) and Azure Information Protection (AIP) policies
- Creating and maintaining documentation, evidence, procedures, and training to support third-party CMMC assessments and audits
- Monitoring, troubleshooting, and improving cloud computing performance
- Offering technical and analytical assistance to diagnose network issues and provide users with solutions, participating in the change management meeting and stakeholder meetings
- Familiarity with federation and single sign-on (SSO) solutions using Duo and user provisioning
Requirements
- Minimum of Seven (7) years of Azure cloud Administration experience
- A BS in information technology is strongly preferred
- Three years of experience that demonstrates deep knowledge of NIST 800-171/CMMC Level 2 security frameworks
- Microsoft certification: Azure Administrator Associate or Azure Security Engineer Associate
- Must be a U.S. citizen
- Additional Skills and Knowledge: Expertise in setting up and configuring Windows Terminal Services/remote desktop
- Security clearance (current or recently expired)
- Certified Security Plus, Network Plus, or CMMC Certified Professional
- Experience with SIEM tools such as Microsoft Sentinel or CrowdStrike
- Strong grasp of security concepts and best practices
- Familiar with CrowdStrike, Qualys, and Microsoft Sentinel
Tech Stack
- Azure
- Cloud
Benefits
- health and dental insurance
- life insurance
- long-term disability
- educational benefits
- FSAs
- a generous 401k plan
- profit sharing
- an EAP
- 11-20 paid vacation days per year
- 10 paid holidays per year
- 56 hours or more of sick leave (based on the state you work in) per year (pro-rated for part-time)