Systems Technician

The Systems Technician is a full-time position responsible for providing reliable desktop support to our onsite and remote users. The successful candidate will handle day-to-day maintenance of existing systems, equipment, and devices while maintaining the highest standards of communication and documentation. This position requires demonstrated experience troubleshooting Windows 11, Office 365, Microsoft Active Directory, and general computer hardware issues. General knowledge of Windows servers and wired/wireless networking is a plus. On-call support and emergency response capability is a valued plus., * Provide white glove IT assistance for equipment failures and service issues for all users within established Service Level Agreement times

• Log time and problem resolutions into the ticketing system in a timely manner with full documentation of problems and resolutions for historical purposes
• Follow up on tickets promptly and communicate with users regarding ticket status and service restoration
• Troubleshoot general computer hardware and software issues
• Troubleshoot Windows 11, Office 365, printer, VoIP phone, and general network issues
• Troubleshoot general connectivity issues including wired, wireless, and VPN
• Setup new user Active Directory accounts, email, and phone systems
• Setup new laptop and desktop stations and perform maintenance on existing equipment
• Perform Windows and application updates in coordination with maintenance windows
• Perform server and network maintenance tasks as directed
• Maintain IT assets, manage inventory, and perform regular audits
• Train users on our technologies and provide technical expertise
• Create new or update existing technical documentation and notes
• Recognize, document, and escalate security incidents and suspected compromises following established incident response procedures
• Monitor alerts and findings from security tools (CrowdStrike Exposure Management, CrowdStrike alerts, FortiGate logs) and coordinate remediation
• Perform system testing and validation of configurations, patches, and updates in non-production environments before production deployment
• Validate remediation of security findings and ensure rollback procedures are tested and documented
• Job responsibilities are dynamic. This may not be a complete list of duties. Other responsibilities and duties may be assigned by your supervisor or upper management at any time., * User provisioning and deprovisioning workflows including Entra ID account creation, license assignment, and secure access removal
• IT asset inventory management, tracking, and audit trail documentation for compliance purposes
• Understanding of CUI (Controlled Unclassified Information) identification, classification, labeling, and secure handling procedures
• Backup, disaster recovery procedures, and understanding of RTO/RPO concepts
• Audit logging, evidence collection, and incident response procedures aligned with CMMC compliance requirements
• VPN and remote access configuration for secure connectivity
• System testing and validation of configurations, patches, and security updates in non-production environments before production rollout
• Rollback procedure development, testing, and documentation to minimize risk during system updates and changes
• Incident recognition, identification of potential security events, proper documentation, and escalation procedures aligned with CMMC requirements
• Triage and monitoring of security tool alerts (CrowdStrike Exposure Management, CrowdStrike alerts, FortiGate logs) with remediation coordination
• Validation of security remediation and vulnerability fixes to ensure effectiveness and compliance, Candidates with experience and willingness to participate in on-call support are highly valued. For qualified candidates interested in on-call participation, the following expectations would apply:
• Maintain availability during scheduled on-call rotations (schedule to be determined by management)
• Respond to emergency IT incidents within a reasonable timeframe as defined by management
• Be reachable by phone and capable of remote access or physical presence as required
• Work irregular hours during emergency situations and planned maintenance windows
• Maintain professional communication with users and management during after-hours incidents

• Experience with NinjaOne or similar remote management and monitoring (RMM) platform for agent deployment and patch management
• Group Policy (GPO) management and Windows security baseline implementation aligned with CMMC/NIST requirements
• Multi-factor authentication (Duo/Azure MFA) administration including user enrollment, device management, and policy configuration, * 3-6 years of desktop/systems support experience
• 3-6 years hands-on experience with Windows 11, Office 365, Active Directory, and VoIP systems
• Strong knowledge of computer hardware and ability to diagnose and resolve issues
• Basic knowledge of M365/Entra ID and Active Directory administration
• Experience configuring and managing Microsoft Intune for endpoint management and device compliance
• Proficiency in administering and supporting SharePoint environments
• Good working knowledge of networking concepts (VLAN segmentation, DNS, IP addressing)
• Reliable, self-motivated team player with strong organizational and communication skills
• Proactive approach to problem-solving with commitment to continuous improvement and automation
• Ability to recognize potential security incidents and take appropriate action without compromising forensic evidence
• Experience with system testing in non-production environments and understanding of change management validation procedures
• Understanding of incident reporting requirements and security event documentation procedures, * Microsoft Windows or cybersecurity certification
• Ability to assemble and troubleshoot computer hardware
• Familiarity with NIST SP 800-171 or CMMC (Cybersecurity Maturity Model Certification) practices and controls
• Availability and willingness to participate in on-call support and emergency response (a plus, not required)
• CrowdStrike Falcon agent deployment and management experience
• Azure GCC High or AWS GovCloud cloud resource administration and networking experience

Required Attributes:

• Demonstrates a strong cybersecurity-first mindset with understanding of DoD contractor compliance requirements, CUI protection, and NIST/CMMC principles in daily operations
• US Citizenship is required

Invitation for Job Applicants to Self-Identify as a U.S. Veteran

• A "disabled veteran" is one of the following:

• a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or
• a person who was discharged or released from active duty because of a service-connected disability.

• A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.
• An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.
• An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.