System Administrator jobs in United States
cer-icon
Apply on Employer Site
company-logo

Procon Consulting ยท 1 day ago

System Administrator

positionMcLean, VA
timeFull-time
remoteOnsite
senioritySenior Level
money$100K/yr - $120K/yr
date5+ years exp

Procon Consulting is a top-ranked construction management and technology consulting firm with 25 years of experience. They are seeking an experienced System Administrator to configure, secure, and operate a cloud-first productivity environment, specifically focusing on Microsoft 365 for their 200+ person company.

Management Consulting
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Harden identity configuration for CUI: implement strict Conditional Access policies, passwordless MFA, identity protection tuning, Privileged Identity Management (PIM), and emergency break-glass controls
Maintain identity logs and evidence retention to support audits and assessments against NIST SP 800-171 controls
Enforce device posture for CUI access with Intune: strict enrollment gates, baseline configuration profiles, compliance policy strictness, controlled device enrollment (company-owned only where required), and device encryption enforcement
Manage Autopilot profiles and lifecycle to ensure new company devices meet CUI security baselines before granting access
Deploy and operate Microsoft Defender for Endpoint and Defender for Office 365 with advanced telemetry, custom detection rules, automated containment playbooks, and integration into the tenant's continuous monitoring and incident response processes
Ensure Defender signals feed into a centralized SIEM or Microsoft Sentinel for correlation, retention, and evidence for assessments
Configure Microsoft Purview for DLP, sensitivity labeling, encryption, retention, and eDiscovery tailored to CUI handling requirements
Implement strict guest access and external sharing controls for Teams, SharePoint, and OneDrive with exception workflows and approvals
Maintain a formal tenant baseline configuration document, change control process, and Infrastructure-as-Code or scripted templates to reproduce hardened settings
Own periodic configuration drift checks, secure tenant setting reviews, and documented remediation actions for audit trails
Configure unified logging, retention, and automated evidence collection for controls mapped to NIST SP 800-171; ensure logs meet retention and integrity requirements for assessments
Produce and maintain artifacts required for audits: control evidence, configuration snapshots, access review records, and incident logs
Vet and configure SSO and data flows for third-party SaaS (e.g. Adobe, Bluebeam, backups) to ensure minimal exposure of CUI and appropriate contractual, technical, and monitoring controls
Implement and enforce app consent and app registration governance in Entra ID
Build PowerShell/Graph automation to produce recurring compliance reports, control evidence packages, license and entitlement reports, and remediation tickets for noncompliant items
Address escalation requests from Helpdesk Analyst and MSSP as needed

Qualification

Microsoft 365 administrationMicrosoft Government CloudMicrosoft IntunePowerShellMicrosoft DefenderMicrosoft PurviewSaaS integrationNIST SP 800-171Security mindsetDocumentation skills

Required

Minimum 5-7 years experience administering Microsoft 365 for mid-size organizations
Experience operating Microsoft Government Cloud tenants (GCC or GCC High) or implementing NIST SP 800-171 controls in Microsoft 365 tenants is highly desired
Hands-on experience with Microsoft Intune / Endpoint Manager, Windows Autopilot, Microsoft Defender, Entra ID / Azure AD, Exchange Online, Teams, and Microsoft Purview
Experience implementing Microsoft Purview (DLP, retention, labels) or equivalent information protection controls
Familiarity integrating SaaS apps (SSO/SAML/OAuth), managing app registrations, and configuring SSO
Proficiency with PowerShell, Microsoft Graph, and automation for evidence collection and control enforcement
Excellent documentation skills and experience creating runbooks and operational procedures
Active security mindset with experience responding to incidents and remediating threats
Background supporting remote/hybrid workforces and managing non-domain-joined devices

Preferred

Microsoft certifications such as Microsoft 365 Certified: Endpoint Administrator Associate, Microsoft 365 Certified: Security Administrator, or Microsoft Certified: Identity and Access Administrator
Experience with Microsoft Sentinel, Intune Suite features, or Microsoft Copilot for Security
Familiarity with third-party MDM/MAM and backup solutions (e.g. Duo Federal)
Experience in tenant-to-tenant migrations, domain changes, or hybrid identity projects

Benefits

Full medical/dental insurance
401(K) plan

Company

Procon Consulting

twittertwittertwitter
company-logo
Procon Consulting focus on providing collaborative solutions in program and project management.
dateFounded in 2000
location
Arlington, Virginia, USA
people-size201-500 employees
web-link
https://www.proconconsulting.com/

H1B Sponsorship

Procon Consulting has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2024 (1)
2021 (2)

Funding

Current Stage
Growth Stage

Leadership Team

leader-logo
Kyu Jung
Co-Founder
linkedin

Recent News

PRLog
Procon Consulting increases national team by 18 FTEs
2023-05-31
Company data provided by crunchbase