System Administrator/SOC Analyst

About The Position

Requirements

• At least 7 years of system admin experience.
• Understanding of hardening endpoints.
• Familiar with gathering reports from systems and tools such as SEIM, SOAR, EDR, DLP, MDM.
• Familiar with Workspace Admin Console.
• Strong expertise in endpoint provisioning and lifecycle management, including STIG hardening, imaging, and logistics for both Apple and Windows devices.
• Proficiency in administering secure authentication hardware and processes, configuring, and deploying FIPS compliant YubiKeys within a controlled onboarding workflow.
• Hands-on experience implementing and managing enterprise security tooling (EDR, DLP, MDM, SIEM), including initial buildout, integration, and ongoing system administration.
• Ability to deliver Tier 1–2 SOC functions, including monitoring, triage, escalation, and analysis across a multicomponent security stack.
• Knowledge of vulnerability management frameworks and FedRAMP High/CMMC requirements, including STIG compliance, vulnerability scanning, POA&M reporting, and secure administration of platforms like Entra ID GCCH, Box for Government, and GovSlack.
• Understanding of how to manage Google Workspace Admin Console and Chrome Enterprise Browser.

Responsibilities

• Manage the procurement, image hardening (STIG compliance), user onboarding, and logistics/shipping of devices for a mixed Apple/Windows environment.
• Procure, fulfill, and ship FIPS-compliant YubiKeys alongside user laptops during onboarding.
• Execute the initial build and ongoing IT administration of required security tooling, including Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), Mobile Device Management (MDM), and Security Information and Event Management (SIEM).
• Google Workspace administration, User and Group account management, and managing the Chrome Enterprise Browser.
• Provide Tier 1 (and potentially Tier 2) Managed Security Operations Center (SOC) services across the outlined security stack.
• Provide ongoing STIG configuration management and vulnerability scanning of all laptops, feeding reporting data directly into a monthly POA&M report.
• Provide ongoing IT administration and support for existing, in-place FedRAMP High applications, specifically Entra ID GCCH, Box for Government, and GovSlack.