System Administrator/SOC Analyst

Duties and Responsibilities

• Hardware-as-a-Service (HaaS): Manage the procurement, image hardening (STIG compliance), user onboarding, andlogistics/shipping of devices for a mixed Apple/Windows environment.
• FIPSYubikeyFacilitation:Procure, fulfill, and ship FIPS-compliant YubiKeys alongside user laptops during onboarding.
• Managed Security Services: Execute theinitialbuild and ongoing IT administration of required security tooling, including Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), Mobile Device Management (MDM), and Security Information and Event Management (SIEM).
• Google Workspace administration,User and Groupaccount management,andmanaging the Chrome EnterpriseBrowser.
• Managed SOC: Provide Tier 1 (and potentially Tier 2) Managed Security Operations Center (SOC) services across the outlined security stack.
• Vulnerability Management and CMMC POA&M reporting: Provide ongoing STIG configuration management and vulnerability scanning of all laptops, feeding reporting data directly into a monthly
• Provide ongoing IT administration and support for existing, in-place FedRAMP High applications, specifically Entra ID GCCH, Box for Government, andGovSlack.

Minimum Experience

• At least7years of system admin experience.
• Understanding of hardening endpoints.
• Familiar withgatheringreportsfromsystem and tools such asSEIM,SOAR,EDR,DLP,MDM.
• FamiliarwithWorkspace Admin Console.

Required Skills

• Strongexpertisein endpoint provisioning and lifecycle management, including STIG hardening, imaging, andlogisticsfor both Apple and Windows devices.
• Proficiencyin administering secure authentication hardware and processes, configuring, and deploying FIPScompliant YubiKeys within a controlled onboarding workflow.
• Handson experience implementing and managing enterprise security tooling (EDR, DLP, MDM, SIEM), including initial buildout, integration, and ongoing system administration.
• Ability to deliver Tier 1–2 SOC functions, including monitoring, triage, escalation, and analysis across a multicomponent security stack.
• Knowledge of vulnerability management frameworks and FedRAMP High/CMMC requirements, including STIG compliance, vulnerability scanning, POA&M reporting, and secure administration of platforms like Entra ID GCCH, Box for Government, andGovSlack.
• Understanding of how tomanageGoogle Workspace Admin Console and Chrome Enterprise Browser.