Junior Microsoft Systems Administrator, Entry

Advanced Systems Design is seeking a Junior Microsoft Systems Administrator, Entry for our client located in Montgomery, AL.

This position is onsite in Montgomery, AL, and requires in-person availability starting day 1. 

Job Overview:

The Junior Microsoft Systems Administrator is responsible for hardening Windows servers and workstations in compliance with NIST SP 800-53 security controls. This role focuses on implementing configuration baselines, enforcing access controls, and continuous monitoring. This position requires strong technical expertise in Microsoft technologies combined with practical knowledge of cybersecurity standards.

Key Responsibilities

• Install, configure, harden, patch, and maintain Windows Server (2019/2022 ) and Windows 10/11 workstations in accordance with NIST SP 800-53 Rev. 5 controls.

• Implement and validate security controls across families including Access Control (AC), Configuration Management (CM), Identification & Authentication (IA), Audit & Accountability (AU), System & Communications Protection (SC), and others relevant to endpoint/server platforms.

• Manage Group Policy Objects (GPOs), security baselines, and Intune/Microsoft Endpoint Manager policies to enforce 800-53-aligned configurations (e.g., password policies, account lockout, least privilege, firewall rules, AppLocker, BitLocker).

Perform hardening tasks, including, but not limited to:

• Enforcing deny-by-default/allow-by-exception execution policies
• Configuring host-based firewalls and intrusion detection/prevention
• Implementing multi-factor authentication and privileged account management
• Enabling cryptographic protections for data at rest/transit
• Removing unnecessary services, features, and default accounts

• Administer Microsoft tools for compliance: Active Directory, Microsoft Intune, Azure AD/Entra ID, Defender for Endpoint, and Azure Policy (where hybrid/cloud-integrated).

• Conduct regular compliance scans, vulnerability assessments, and remediation of findings to maintain continuous ATO posture.

• Document system security plans (SSP), control implementation details, POA&Ms, and evidence for NIST 800-53 controls during audits or assessments.

Required Qualifications:

• 2 years of hands-on experience administering Windows servers and workstations in enterprise environments.
• Proficiency with Microsoft administration tools: Active Directory, Group Policy, PowerShell, SCCM/MECM, Intune, Defender suite.
• Understanding of key 800-53 control families as applied to endpoints/servers (AC, AU, CM, IA, SC, SI, etc.).
• Experience with hardening techniques, baseline configuration management, and least-privilege principles.
• Familiarity with compliance tools (Nessus/Tenable or similar).
• Familiar with PowerShell for automation and compliance checks.

Preferred Qualifications:

• Microsoft: Microsoft Certified: Windows Server Hybrid Administrator Associate, Endpoint Administrator, or equivalent.
• Security/Compliance: CompTIA Security
• Hands-on work with Azure AD/Entra ID, Microsoft Defender for Endpoint compliance policies, or Azure Policy for NIST mappings

Education Required:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field (or equivalent experience).

Advanced Systems Design, Inc. is:

• A leading Information Technology provider for Federal, State & Local government agencies.
• A certified minority-owned small business government contractor with capabilities related to Public Health IT, Criminal Justice, Transportation, and Defense.
• A certified service-disabled veteran-owned company with a proud 46-year track record of providing successful innovative solutions for our government customers.
• A drug-free workplace in accordance with the Drug-Free Workplace Act of 1988. 
• Applicants who have a signed offer of employment or contractor agreement are subject to:
  • the pre-employment testing protocol:
    • background investigation
    • drug screening

Our Employees:

• Are actively working on next-generation technology projects with the U.S. Department of Veterans Affairs, CDC, and a wide array of Federal, State, and Local agencies throughout the United States
• Are eligible for wide-ranging benefits and perks, including but not limited to:
  • Comprehensive Health Insurance with PPO and HDHP/HSA options
  • Dental Insurance
  • Vision Insurance
  • Short/Long-Term Disability
  • Group Life Insurance - Company Paid
  • Voluntary Life Insurance
  • 401(k) Plan with Employer Match
  • Paid Time Off (Vacation/Sick)
  • Holiday Pay - Company Paid Federal Holidays
  • Professional Certification Incentive Plan
  • Employee Referral Plan
  • Technology Exposure

For additional information regarding Advanced Systems Design, please check out our WEBSITE  or click HERE for all current job openings.

Advanced Systems Design is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.