What are the responsibilities and job description for the System Administrator SkillBridge Internship position at DUIT?
Salary: $60,000 - $90,000One of Inc 5000's fastest growing companies, come join us! Our work environment is limitless, you matter to us, your great work will be recognized, and there are many opportunities for advancement. Davis Unlimited Information Technologies, Inc (DUIT) wants you! We have an opening for a System Administrator SkillBridge intern in our office headquarters.Davis Unlimited Information Technologies (DUIT)'s SkillBridge program is developed so the Service member not only obtain Industry skill sets, but also the skill sets required to meet customer's needs after completion of the SkillBridge program. We are looking to not only have the service member gain industry knowledge but also the knowledge required to employ them upon completion.The PathAt our headquarters office in Maryland, we willassist retiring or transitioning Military Service members. DUIT has developed extensive SkillBridge job training and career development programs in the following career fields to enhance the opportunities for separating Service members:Program ManagerProgram IntegratorHardware TechnicianAcquisition ProfessionalNetwork EngineerSoftware EngineerCybersecurity EngineeringIT StaffingAll Applicants must have the following: approval from command and able to follow training plan requirements . All information provided is subject to verification.What you will get to do:System administrator: will get to use PowerShell Scripting, work within Microsoft Entra ID, Microsoft Azure, Microsoft Intune, and Microsoft Defender. The system administrator will learn security frameworks such as NIST SP 800-171 and CMMC.Requirements5 years administering Microsoft environments; 23 years in Microsoft 365 GCC (GCC or GCC High) and Azure GovernmentStrong PowerShell scripting for automation (Exchange Online, Entra ID, Intune, SharePoint, Graph)Hands-on with hybrid identity (Entra ID/Azure AD), Entra Connect/Cloud Sync, Conditional Access, MFA, PIMEndpoint management with Intune (Gov): device compliance, app protection, BitLocker, Autopilot, Windows Update for BusinessEmail/collab: Exchange Online (mail flow, EOP, DKIM/DMARC/SPF), Teams (GCC nuances), SharePoint/OneDrive governanceSecurity stack: Microsoft Defender for Endpoint/Office/Identity, Defender for Cloud/Cloud Apps, Sentinel basics (KQL)Azure (Gov): subscriptions/management groups, RBAC, VNets/NSGs, private endpoints, Key Vault, Storage/SAS, Backup/ASRGovernance & compliance: Azure Policy, blueprints/landing zones (Gov), tagging, cost management, least-privilege designBackup/DR and change management (ITIL fundamentals); solid documentation skillsGCC/Government Cloud SpecificsUnderstanding of GCC vs GCC High boundaries, FedRAMP/NIST 800-171 alignment, and feature parity limitationsData residency/sovereignty and egress controls; third-party app restrictions in Gov tenantsS/MIME, and certificate lifecycle basicsCMMC (v2.0) Knowledge & PracticesWorking knowledge of CMMC Levels 12 and mapping to NIST SP 800-171/172 requirementsExperience implementing and operating:Access control: role-based access, Conditional Access, device compliance, session controlsIdentification & authentication: MFA everywhere.Audit & logging: unified audit log, retention, Sentinel/Log Analytics queries & alerting; evidence collection. Splunk, Datadog or equivalent.Configuration management: secure baselines (STIG-informed), change tracking, policy as code (Azure Policy)Incident response: response procedures, post-incident reportingData protection: Purview sensitivity labels, DLP (Exchange/SharePoint/Teams/endpoints), Information Barriers, eDiscoveryVulnerability & patch management across servers, endpoints, and cloud resourcesContributing to SSPs, POA&Ms, and control evidence; supporting gap assessments and readiness for C3PAO auditsHandling and safeguarding CUI, media protection, and secure file sharing within Gov boundariesNetworking & InfrastructureSite-to-site VPN/ExpressRoute concepts for Gov, private DNS, split-tunnel considerationsZero Trust segmentation principles; endpoint and identity as security perimeterAutomation & DevOps-AdjacentPowerShell modules (ExchangeOnlineManagement, Microsoft.Graph, Az, AzureAD/Entra), scheduled jobs, desired state configsCI/CD-style admin habits for scripts (version control, peer review), ARM/Bicep/Terraform (Gov aware) a plusSoft SkillsClear technical writing for auditors and leadership; ability to translate controls into actionable configurationsCross-team collaboration (Security, Compliance, Networking), vendor coordination, and user communication/trainingCertifications (Nice to Have)Microsoft: MS-102 (or MD-102), AZ-104, AZ-500, SC-200/300/400Compliance/Security: Security , CySA , CISSPCMMC ecosystem: CCP/CCL (or equivalent training), experience with RPO/C3PAO engagements
Salary : $60,000 - $90,000