Responsibilities
- GCC High Deployment: Lead the hands-on setup, configuration, and provisioning of Microsoft 365 services and endpoints within secure Microsoft GCC High (Government Community Cloud) environments.
- Security Baselining: Implement, enforce, and manage strict Security Baseline Configurations to meet compliance metrics.
- Continuous Compliance Management: Manage daily compliance workflows, ensuring all technical controls remain actively aligned with NIST SP 800-171 / CMMC Level 2 mandates.
- Reporting & Analytics: Generate critical monthly compliance deliverables, including
- SPRS Scoring updates, comprehensive log monitoring, access control audits, and vulnerability management reviews.
- Threat Detection & Response: Maintain active threat monitoring profiles using Microsoft Defender to identify, isolate, and remediate infrastructure vulnerabilities.
- Cloud Infrastructure Support: Provide ongoing tier-3 cloud-service administration, troubleshooting, and infrastructure support.
Technical Qualifications
- Proven, hands-on administrative experience with Microsoft 365, Azure Active Directory / Entra ID, and Microsoft Defender.
- Direct experience working within, or migrating data to, Microsoft 365 GCC High is highly preferred.
- Strong familiarity with cybersecurity framework controls (NIST SP 800-171, CMMC, or FedRAMP).
- Ability to parse, analyze, and audit security logs and vulnerability scan data.