Duit Holdings, Inc. · 1 month ago
System Administrator SkillBridge Internship
Baltimore, Maryland, United States
Internship
Onsite
Intern, Mid, Senior Level
$60K/yr - $90K/yr
5+ years expDuit Holdings, Inc. is one of Inc 5000's fastest growing companies, seeking a System Administrator SkillBridge intern to join their headquarters in Maryland. The role involves gaining industry knowledge and skills in system administration while assisting transitioning military service members in their career development.
Building MaterialConstructionInfrastructure
Responsibilities
System administrator: will get to use PowerShell Scripting, work within Microsoft Entra ID, Microsoft Azure, Microsoft Intune, and Microsoft Defender
The system administrator will learn security frameworks such as NIST SP 800-171 and CMMC
Qualification
Required
5+ years administering Microsoft environments; 2–3+ years in Microsoft 365 GCC (GCC or GCC High) and Azure Government
Strong PowerShell scripting for automation (Exchange Online, Entra ID, Intune, SharePoint, Graph)
Hands-on with hybrid identity (Entra ID/Azure AD), Entra Connect/Cloud Sync, Conditional Access, MFA, PIM
Endpoint management with Intune (Gov): device compliance, app protection, BitLocker, Autopilot, Windows Update for Business
Email/collab: Exchange Online (mail flow, EOP, DKIM/DMARC/SPF), Teams (GCC nuances), SharePoint/OneDrive governance
Security stack: Microsoft Defender for Endpoint/Office/Identity, Defender for Cloud/Cloud Apps, Sentinel basics (KQL)
Azure (Gov): subscriptions/management groups, RBAC, VNets/NSGs, private endpoints, Key Vault, Storage/SAS, Backup/ASR
Governance & compliance: Azure Policy, blueprints/landing zones (Gov), tagging, cost management, least-privilege design
Backup/DR and change management (ITIL fundamentals); solid documentation skills
Understanding of GCC vs GCC High boundaries, FedRAMP/NIST 800-171 alignment, and feature parity limitations
Data residency/sovereignty and egress controls; third-party app restrictions in Gov tenants
S/MIME, and certificate lifecycle basics
Working knowledge of CMMC Levels 1–2 and mapping to NIST SP 800-171/172 requirements
Experience implementing and operating: Access control: role-based access, Conditional Access, device compliance, session controls
Identification & authentication: MFA everywhere
Audit & logging: unified audit log, retention, Sentinel/Log Analytics queries & alerting; evidence collection. Splunk, Datadog or equivalent
Configuration management: secure baselines (STIG-informed), change tracking, policy as code (Azure Policy)
Incident response: response procedures, post-incident reporting
Data protection: Purview sensitivity labels, DLP (Exchange/SharePoint/Teams/endpoints), Information Barriers, eDiscovery
Vulnerability & patch management across servers, endpoints, and cloud resources
Contributing to SSPs, POA&Ms, and control evidence; supporting gap assessments and readiness for C3PAO audits
Handling and safeguarding CUI, media protection, and secure file sharing within Gov boundaries
Site-to-site VPN/ExpressRoute concepts for Gov, private DNS, split-tunnel considerations
Zero Trust segmentation principles; endpoint and identity as security perimeter
PowerShell modules (ExchangeOnlineManagement, Microsoft.Graph, Az, AzureAD/Entra), scheduled jobs, desired state configs
CI/CD-style admin habits for scripts (version control, peer review), ARM/Bicep/Terraform (Gov aware)
Clear technical writing for auditors and leadership; ability to translate controls into actionable configurations
Cross-team collaboration (Security, Compliance, Networking), vendor coordination, and user communication/training
Preferred
Microsoft: MS-102 (or MD-102), AZ-104, AZ-500, SC-200/300/400
Compliance/Security: Security+, CySA+, CISSP
CMMC ecosystem: CCP/CCL (or equivalent training), experience with RPO/C3PAO engagements
Company
Duit Holdings, Inc.
Duit Holdings, Inc.
501-1000 employees
Funding
Current Stage
Late StageCompany data provided by crunchbase