The Role
Manage hardware provisioning and security tools for a mixed Apple/Windows environment, provide SOC services, and ensure compliance with security standards.
Summary Generated by Built In
Duties and Responsibilities
- Hardware-as-a-Service (HaaS): Manage the procurement, image hardening (STIG compliance), user onboarding, andlogistics/shipping of devices for a mixed Apple/Windows environment.
- FIPSYubikeyFacilitation:Procure, fulfill, and ship FIPS-compliant YubiKeys alongside user laptops during onboarding.
- Managed Security Services: Execute theinitialbuild and ongoing IT administration of required security tooling, including Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), Mobile Device Management (MDM), and Security Information and Event Management (SIEM).
- Google Workspace administration,User and Groupaccount management,andmanaging the Chrome EnterpriseBrowser.
- Managed SOC: Provide Tier 1 (and potentially Tier 2) Managed Security Operations Center (SOC) services across the outlined security stack.
- Vulnerability Management and CMMC POA&M reporting: Provide ongoing STIG configuration management and vulnerability scanning of all laptops, feeding reporting data directly into a monthly
- Provide ongoing IT administration and support for existing, in-place FedRAMP High applications, specifically Entra ID GCCH, Box for Government, andGovSlack.
Minimum Experience
- At least7years of system admin experience.
- Understanding of hardening endpoints.
- Familiar withgatheringreportsfromsystem and tools such asSEIM,SOAR,EDR,DLP,MDM.
- FamiliarwithWorkspace Admin Console.
Required Skills
- Strongexpertisein endpoint provisioning and lifecycle management, including STIG hardening, imaging, andlogisticsfor both Apple and Windows devices.
- Proficiencyin administering secure authentication hardware and processes, configuring, and deploying FIPScompliant YubiKeys within a controlled onboarding workflow.
- Handson experience implementing and managing enterprise security tooling (EDR, DLP, MDM, SIEM), including initial buildout, integration, and ongoing system administration.
- Ability to deliver Tier 1–2 SOC functions, including monitoring, triage, escalation, and analysis across a multicomponent security stack.
- Knowledge of vulnerability management frameworks and FedRAMP High/CMMC requirements, including STIG compliance, vulnerability scanning, POA&M reporting, and secure administration of platforms like Entra ID GCCH, Box for Government, andGovSlack.
- Understanding of how tomanageGoogle Workspace Admin Console and Chrome Enterprise Browser.
Skills Required
- At least 7 years of system admin experience
- Understanding of hardening endpoints
- Familiarity with reports from SEIM, SOAR, EDR, DLP, MDM
- Familiarity with Workspace Admin Console
Am I A Good Fit?
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
Success! Refresh the page to see how your skills align with this role.
The Company
What We Do
DigiFlight, Inc. | 856 followers on LinkedIn. DigiFlight, Inc. (DFI), a veteran-owned/minority -owned small business, specializing in providing state-of-the-art acquisition management and technology solutions for all levels of Government and commercial clients. Our management team brings vast expertise in the development and lifecycle management of large scale IT systems including Acquisition Management, System Engineering, Test and Evaluation
