Cloud Systems Engineer

Agile IT is a Microsoft AOS-G partner and Cyber AB Registered Practitioner Organization (RPO) built for the Defense Industrial Base. As one of six original AOS-G resellers for GCC High, we help defense contractors meet CMMC compliance and operate securely in Microsoft cloud environments. Our customers build fighter jet components, naval propulsion systems, satellite payloads, and aerospace platforms that support the Department of War. We make sure their Microsoft environments are ready for the job.

We are in a high-growth phase, and we are stacking the team to match. This role sits at the center of how we get DIB clients across the finish line, from first gap assessment through a C3PAO-led Level 2 assessment and the compliance work that follows.

This role is the technical backbone of that practice. 

You will architect and deploy cloud environments for clients who handle Controlled Unclassified Information (CUI) primarily on Microsoft Azure Government and GCC High tenants. You will work directly with compliance-minded customers who need an engineer who speaks both cloud infrastructure and cybersecurity frameworks fluently. 

What You Will Do 

• Design and deploy Azure Government and GCC High environments that meet CMMC Level 2 / NIST SP 800-171 control requirements 
• Configure and deploy Microsoft 365 GCC High tenants including Entra ID, Conditional Access, Defender for Endpoint, and Purview 
• Perform CUI boundary scoping, identify what systems are in-scope and architect accordingly to minimize assessment surface 
• Implement and document technical controls across access management, audit logging, configuration management and system protection 
• Serve as the technical escalation point for managed service clients on compliance and infrastructure issues 
• Collaborate with account managers to identify scope changes and risks before they become client problems 

Required 

• 3+ years of hands-on experience with Microsoft Azure  
• Experience with Microsoft 365 Entra ID, Intune, Defender suite, Exchange Online, SharePoint 
• Strong written and verbal communication  
• Bias towards creating documentation around what you do 
• Familiarity with ITSM frameworks and ITIL concepts 

Preferred 

• Active certifications: AZ-900 / AZ-104 / AZ-500, MS-500, SC-200, or CompTIA Security+ 
• Experience supporting a CMMC Level 2 C3PAO assessment or DFARS 252.204-7012 compliance engagement 
• Familiarity with Autotask 
• Prior MSP or multi-tenant managed services experience 
• Exposure to CMMC Registered Practitioner (RP) or Certified Professional (CP) program 
• Working knowledge of NIST SP 800-171 controls  
• Ability to scope CUI environments, define trust boundaries, and document them for audit purposes 
• and/or Azure Government cloud environments 
• Working knowledge of NIST SP 800-171 controls — not just awareness 
• Ability to scope CUI environments, define trust boundaries, and document them for audit purposes 

Additional requirements

• Must successfully pass a cognitive assessment as part of the hiring process.
• Must successfully complete a typing test to validate typing speed and accuracy.
• Recommendations required

Compensation & Benefits:

• Competitive executive compensation (base salary + commission):
• Base Salary: $135,000 - $145,000 (Depending on expertise and domain expertise). 
• Comprehensive benefits package (medical, retirement plan, PTO, professional development).
• Mission-driven work that directly strengthens the national security supply chain.