Key skills
Azure cloud administrationNIST 800-171/CMMC Level 2Microsoft certificationWindows Virtual DesktopSIEM toolsMicrosoft SentinelPowerShell scriptingActive DirectoryNetwork securityTechnical communicationPowerShellExpressAzureAzure ADIdentity ManagementSSOSingle Sign-OnRisk ManagementChange ManagementNetwork SecurityFirewall
About this role
ERG is a research and consulting firm that provides a wide range of support to federal, state, and commercial clients. They are seeking a highly skilled Senior Azure Systems Engineer to support and enhance their enterprise-level cloud environment, focusing on Azure and Office 365 while ensuring compliance with security standards.
Responsibilities:
- Designing and deploying Azure infrastructure components, including compute, storage, networking, identity, governance, and managing hybrid Office365 environments
- Architect and configure virtual networks (VNets), Network security groups (NSGs), Express Route, and private endpoints in Azure
- Create and maintain architecture diagrams
- Propose environmental improvements or impacts, when needed, using diagrams and risk management principles
- Managing Microsoft identity management tools like Active Directory, Azure AD, AD Connect, Duo, and Office 365
- Supporting Azure firewall and Windows Virtual Desktop (WVD) environments
- Maintain infrastructure that meets or exceeds CMMC Level 2 requirements, including proper handling of CUI
- Optimizing Windows Virtual Desktop (WVD) for cost, performance, rightsizing, reservations, savings plans, and security
- Writing and updating automation scripts using PowerShell or similar languages
- Understanding and configuring Azure Sentinel, including SIEM rules, correlations, and dashboards
- Setting up data loss prevention (DLP) and Azure Information Protection (AIP) policies
- Creating and maintaining documentation, evidence, procedures, and training to support third-party CMMC assessments and audits
- Monitoring, troubleshooting, and improving cloud computing performance
- Offering technical and analytical assistance to diagnose network issues and provide users with solutions, participating in the change management meeting and stakeholder meetings
- Familiarity with federation and single sign-on (SSO) solutions using Duo and user provisioning
Requirements:
- Minimum of Seven (7) years of Azure cloud Administration experience
- Three years of experience that demonstrates deep knowledge of NIST 800-171/CMMC Level 2 security frameworks
- Microsoft certification: Azure Administrator Associate or Azure Security Engineer Associate
- Must be a U.S. citizen
- A BS in information technology is strongly preferred
- Expertise in setting up and configuring Windows Terminal Services/remote desktop
- Security clearance (current or recently expired)
- Certified Security Plus, Network Plus, or CMMC Certified Professional
- Experience with SIEM tools such as Microsoft Sentinel or CrowdStrike
- Strong grasp of security concepts and best practices
- Familiar with CrowdStrike, Qualys, and Microsoft Sentinel