Senior Microsoft Systems Administrator

Advanced Systems Design is seeking a Senior Microsoft Systems Administrator for our client located in Montgomery, AL.

This position is onsite in Montgomery, AL, and requires in-person availability starting day 1. 

Job Overview:

We are seeking a Senior Microsoft Systems Administrator to lead a project to harden Windows servers and workstations to comply with NIST SP 800-53 security controls. This role focuses on implementing configuration baselines, enforcing access controls, and continuous monitoring. This position requires strong technical expertise in Microsoft technologies combined with practical knowledge of cybersecurity standards.

Key Responsibilities

Install, configure, harden, patch, and maintain Windows Server (2019/2022 ) and Windows 10/11 workstations in accordance with NIST SP 800-53 Rev. 5 controls.

• Implement and validate security controls across families, including Access Control (AC), Configuration Management (CM), Identification & Authentication (IA), Audit & Accountability (AU), System & Communications Protection (SC), and others relevant to endpoint/server platforms.
• Manage Group Policy Objects (GPOs), security baselines, and Intune/Microsoft Endpoint Manager policies to enforce 800-53-aligned configurations (e.g., password policies, account lockout, least privilege, firewall rules, AppLocker, BitLocker).
• Perform hardening tasks, including:
  • Enforcing deny-by-default/allow-by-exception execution policies
  • Configuring host-based firewalls and intrusion detection/prevention
  • Implementing multi-factor authentication and privileged account management
  • Enabling cryptographic protections for data at rest/transit
  • Removing unnecessary services, features, and default accounts
• Administer Microsoft tools for compliance: Active Directory, Microsoft Endpoint
  • Configuration Manager (SCCM/MECM), Microsoft Intune, Azure AD/Entra ID,
  • Defender for Endpoint, and Azure Policy (where hybrid/cloud-integrated).
• Document system security plans (SSP), control implementation details,
  • POA&Ms, and evidence for NIST 800-53 controls during the project.
• Develop PowerShell scripts for automation of compliance checks and reporting.

Required Qualifications:

• 4 years of hands-on experience administering Windows servers and workstations in enterprise environments.
• Demonstrated experience implementing NIST SP 800-53 security controls on Microsoft platforms.
• Proficiency with Microsoft administration tools: Active Directory, Group Policy, PowerShell, SCCM/MECM, Intune, Defender suite.
• Understanding of key 800-53 control families as applied to endpoints/servers (AC, AU, CM, IA, SC, SI, etc.).
• Experience with hardening techniques, baseline configuration management, and least-privilege principles.
• Familiarity with compliance tools (Nessus/Tenable or similar).
• Strong scripting skills (PowerShell preferred) for automation and compliance checks.
• U.S. citizenship required

Preferred Qualifications:

• Relevant certifications:
  • Microsoft: Microsoft Certified: Windows Server Hybrid Administrator
• Associate, Endpoint Administrator, or equivalent.
  • Security/Compliance: CompTIA Security , CISM, or CAP.
• Hands-on work with Azure AD/Entra ID, Microsoft Defender for Endpoint compliance policies, or Azure Policy for NIST mappings.
• Knowledge of related standards (NIST 800-171, CMMC, FISMA).

Education Required:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field (or equivalent experience).

Advanced Systems Design, Inc. is:

• A leading Information Technology provider for Federal, State & Local government agencies.
• A certified minority-owned small business government contractor with capabilities related to Public Health IT, Criminal Justice, Transportation, and Defense.
• A certified service-disabled veteran-owned company with a proud 46-year track record of providing successful innovative solutions for our government customers.
• A drug-free workplace in accordance with the Drug-Free Workplace Act of 1988. 
• Applicants who have a signed offer of employment or contractor agreement are subject to:
  • the pre-employment testing protocol:
    • background investigation
    • drug screening

Our Employees:

• Are actively working on next-generation technology projects with the U.S. Department of Veterans Affairs, CDC, and a wide array of Federal, State, and Local agencies throughout the United States
• Are eligible for wide-ranging benefits and perks, including but not limited to:
  • Comprehensive Health Insurance with PPO and HDHP/HSA options
  • Dental Insurance
  • Vision Insurance
  • Short/Long-Term Disability
  • Group Life Insurance - Company Paid
  • Voluntary Life Insurance
  • 401(k) Plan with Employer Match
  • Paid Time Off (Vacation/Sick)
  • Holiday Pay - Company Paid Federal Holidays
  • Professional Certification Incentive Plan
  • Employee Referral Plan
  • Technology Exposure

For additional information regarding Advanced Systems Design, please check out our WEBSITE  or click HERE for all current job openings.

Advanced Systems Design is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.