Information Technology Security Administrator

Loft Federal

$115K — $145K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 5+ years of hands-on experience in Systems Administration focusing on IT security
  • U.S. Citizenship required due to federal contracting compliance
  • Active DoD Secret clearance mandatory
  • Ability to obtain Top Secret/Sensitive Compartmented Information (TS/SCI) clearance
  • Bachelor's degree in information technology or related field preferred
  • IAT Level II Certification such as Security+ CE, CCNA Security is a plus
  • Additional technical certifications like Azure Security Engineer Associate or CySA+ are beneficial

Responsibilities

  • Configure and harden Windows/Linux endpoints and servers according to industry standards
  • Administer and secure cloud environments, specifically Microsoft 365 GCC High, Google GCP, and AWS Gov cloud
  • Implement and manage Mobile Device Management (MDM) policies using Microsoft Intune
  • Enforce Identity and Access Management (IAM) controls including MFA and SSO
  • Manage corporate network security including firewalls and VPNs
  • Monitor security tools such as Endpoint Detection & Response (EDR) and SIEM logs
  • Assist in vulnerability management and collaborate on compliance with DevSecOps team

Benefits

  • Competitive salary
  • Benefits package
  • Inclusive and collaborative work culture
  • Challenging and meaningful work
  • Growth and development opportunities
Full Job Description
As the IT Systems Security Administrator at Loft Federal, you will turn policy into practice by hardening configurations, deploying security tools, managing identity/access, patching vulnerabilities, and generating the technical logs and evidence needed to maintain compliance with CMMC 2.0 (Level 2) and NIST SP 800-171. The ideal candidate will be a highly technical, hands-on IT Systems Security Administrator to implement, maintain, and secure our on-premises and cloud infrastructure. In this role, you will be a technical engine executing our security controls. The Role - Configure and harden Windows/Linux endpoints, servers, and networks according to industry standards (e.g., CIS Benchmarks or DISA STIGs) to satisfy NIST/CMMC technical controls. - Administer and secure our cloud environments, specifically managing secure configurations in Microsoft 365 GCC High, Google GCP, and or AWS Gov cloud environments. - Implement and manage robust Mobile Device Management (MDM) policies using Microsoft Intune or equivalent tools. - Implement and enforce strict Identity and Access Management (IAM) controls, including Multi-Factor Authentication (MFA), Single Sign-On (SSO), and conditional access policies. - Configure and manage corporate network security, including firewalls, secure Wi-Fi, VPNs, and Network Access Control (NAC). - Configure, fine-tune, and monitor security tools, including Endpoint Detection & Response (EDR) and SIEM logs. - Ensure systems are operated, maintained, and disposed of in accordance with internal security policies and practices outlined in the security plan. - Assist in investigations of computer security violations and incidents, reporting as necessary to the appropriate parties. - Assist with the technical vulnerability management lifecycle: execute regular vulnerability scans, analyze results, prioritize, and deploy patches across all systems. - Participate in threat, vulnerability, and risk assessments to implement effective security changes across the business. - Collaborate closely with the DevSecOps team to enforce and maintain NIST/CMMC compliance across our software development infrastructure, CI/CD pipelines, and application deployments. Must Haves - Experience: 5+ years of hands-on experience in Systems Administration with a heavy focus on IT security. - Citizenship: U.S. Citizenship is required due to federal contracting compliance and data handling requirements. - Active DoD Secret clearance is required. - The ability to obtain and maintain a Top Secret / Sensitive Compartmented Information (TS/SCI) clearance is required. Nice to Haves - Bachelor's degree in information technology or a related field. - Experience with NIST 800-37, 800-53 - IAT Level II Certification: Security+ CE, CCNA Security - Additional hands-on technical certifications (e.g., Azure Security Engineer Associate, CySA+, or Network+). - Demonstrated problem-solving and analytical abilities. - Familiarity with current cybersecurity threats and mitigation strategies. - Ability to work collaboratively with cross-functional teams. Per Colorado law, we are required to disclose the base compensation range for this role. This range is intentionally wide as we assess individuals based on their unique abilities and experience to find the best fit for our needs. Ultimately, your compensation will be determined by your education, experience, knowledge, skills, and abilities. In addition to a competitive salary and benefits package, you will find a truly remarkable culture guided by transparency and collaboration and work that is challenging and meaningful. We can't wait to meet you and see what you may add to our team! Salary Range $115,000-$145,000 USD

Similar Jobs

More Jobs at Loft Federal

More Information Technology Jobs

Find similar Information Technology Security Administrator jobs: