System Administrator at Procon Consulting in McLean, VA | Kablio

Role

Description

entra id

defender deployment

siem integration

purview dlp

autopilot management

intune posture

Implement and enforce app consent and app registration governance in Entra ID.
Deploy and operate Microsoft Defender for Endpoint and Defender for Office 365 with advanced telemetry, custom detection rules, automated containment playbooks, and integration into the tenant's continuous monitoring and incident response processes.
Ensure Defender signals feed into a centralized SIEM or Microsoft Sentinel for correlation, retention, and evidence for assessments.
Configure unified logging, retention, and automated evidence collection for controls mapped to NIST SP 800-171; ensure logs meet retention and integrity requirements for assessments.
Implement strict guest access and external sharing controls for Teams, SharePoint, and OneDrive with exception workflows and approvals.
Maintain identity logs and evidence retention to support audits and assessments against NIST SP 800-171 controls.
Maintain a formal tenant baseline configuration document, change control process, and Infrastructure-as-Code or scripted templates to reproduce hardened settings.
Address escalation requests from Helpdesk Analyst and MSSP as needed
Configure Microsoft Purview for DLP, sensitivity labeling, encryption, retention, and eDiscovery tailored to CUI handling requirements.
Manage Autopilot profiles and lifecycle to ensure new company devices meet CUI security baselines before granting access
Produce and maintain artifacts required for audits: control evidence, configuration snapshots, access review records, and incident logs.
Own periodic configuration drift checks, secure tenant setting reviews, and documented remediation actions for audit trails
Build PowerShell/Graph automation to produce recurring compliance reports, control evidence packages, license and entitlement reports, and remediation tickets for noncompliant items.
Harden identity configuration for CUI: implement strict Conditional Access policies, passwordless MFA, identity protection tuning, Privileged Identity Management (PIM), and emergency break-glass controls.
Vet and configure SSO and data flows for third-party SaaS (e.g. Adobe, Bluebeam, backups) to ensure minimal exposure of CUI and appropriate contractual, technical, and monitoring controls.
Enforce device posture for CUI access with Intune: strict enrollment gates, baseline configuration profiles, compliance policy strictness, controlled device enrollment (company-owned only where required), and device encryption enforcement.

Requirements

intune

azure ad

powershell

m365 certified

security

documentation

Hands-on experience with Microsoft Intune / Endpoint Manager, Windows Autopilot, Microsoft Defender, Entra ID / Azure AD, Exchange Online, Teams, and Microsoft Purview.
Familiarity integrating SaaS apps (SSO/SAML/OAuth), managing app registrations, and configuring SSO.
Minimum 5-7 years experience administering Microsoft 365 for mid-size organizations.
Microsoft certifications such as Microsoft 365 Certified: Endpoint Administrator Associate, Microsoft 365 Certified: Security Administrator, or Microsoft Certified: Identity and Access Administrator.
Familiarity with third-party MDM/MAM and backup solutions (e.g. Duo Federal).
Background supporting remote/hybrid workforces and managing non-domain-joined devices.
Experience with Microsoft Sentinel, Intune Suite features, or Microsoft Copilot for Security.
Excellent documentation skills and experience creating runbooks and operational procedures.
Experience implementing Microsoft Purview (DLP, retention, labels) or equivalent information protection controls
Active security mindset with experience responding to incidents and remediating threats.
Proficiency with PowerShell, Microsoft Graph, and automation for evidence collection and control enforcement.
Experience operating Microsoft Government Cloud tenants (GCC or GCC High) or implementing NIST SP 800-171 controls in Microsoft 365 tenants is highly desired.
Experience in tenant-to-tenant migrations, domain changes, or hybrid identity projects.

Benefits

Information not given or found

Training + Development

Information not given or found

Interview process

Information not given or found

Visa Sponsorship

Information not given or found

Security clearance

Information not given or found

Company

Overview

1996

Years of Expertise

The company has accumulated extensive experience across various industries and complex projects.

Specializes in delivering high-quality project management, engineering, and consultancy services.
Operates across multiple sectors including energy, infrastructure, buildings, utilities, and transport.
Known for expertise in handling complex, multidisciplinary projects from concept to completion.
Unique ability to manage both technical and strategic elements sets it apart in the consulting world.
Portfolio includes a wide variety of projects, from large transportation networks to advanced energy infrastructure.
Focused on delivering value through innovation, often leading the way in introducing new methodologies and technologies.

Culture + Values

Client‑centered service
Sound and tested technical advice
Innovation
Respect for clients, partners, and colleagues
Everyone is required to be responsive
Constantly on the lookout for risk
Always open to innovation and change

Environment + Sustainability

No publicly stated net zero target date
No published environmental or sustainability strategy, goals, or results found

Inclusion & Diversity

No publicly disclosed DEI strategy, goals, outcomes, or gender-related statistics found

Articles

Our Team

Description

entra id

defender deployment

siem integration

purview dlp

autopilot management

intune posture

Implement and enforce app consent and app registration governance in Entra ID.
Deploy and operate Microsoft Defender for Endpoint and Defender for Office 365 with advanced telemetry, custom detection rules, automated containment playbooks, and integration into the tenant's continuous monitoring and incident response processes.
Ensure Defender signals feed into a centralized SIEM or Microsoft Sentinel for correlation, retention, and evidence for assessments.
Configure unified logging, retention, and automated evidence collection for controls mapped to NIST SP 800-171; ensure logs meet retention and integrity requirements for assessments.
Implement strict guest access and external sharing controls for Teams, SharePoint, and OneDrive with exception workflows and approvals.
Maintain identity logs and evidence retention to support audits and assessments against NIST SP 800-171 controls.
Maintain a formal tenant baseline configuration document, change control process, and Infrastructure-as-Code or scripted templates to reproduce hardened settings.
Address escalation requests from Helpdesk Analyst and MSSP as needed
Configure Microsoft Purview for DLP, sensitivity labeling, encryption, retention, and eDiscovery tailored to CUI handling requirements.
Manage Autopilot profiles and lifecycle to ensure new company devices meet CUI security baselines before granting access
Produce and maintain artifacts required for audits: control evidence, configuration snapshots, access review records, and incident logs.
Own periodic configuration drift checks, secure tenant setting reviews, and documented remediation actions for audit trails
Build PowerShell/Graph automation to produce recurring compliance reports, control evidence packages, license and entitlement reports, and remediation tickets for noncompliant items.
Harden identity configuration for CUI: implement strict Conditional Access policies, passwordless MFA, identity protection tuning, Privileged Identity Management (PIM), and emergency break-glass controls.
Vet and configure SSO and data flows for third-party SaaS (e.g. Adobe, Bluebeam, backups) to ensure minimal exposure of CUI and appropriate contractual, technical, and monitoring controls.
Enforce device posture for CUI access with Intune: strict enrollment gates, baseline configuration profiles, compliance policy strictness, controlled device enrollment (company-owned only where required), and device encryption enforcement.

Requirements

intune

azure ad

powershell

m365 certified

security

documentation

Hands-on experience with Microsoft Intune / Endpoint Manager, Windows Autopilot, Microsoft Defender, Entra ID / Azure AD, Exchange Online, Teams, and Microsoft Purview.
Familiarity integrating SaaS apps (SSO/SAML/OAuth), managing app registrations, and configuring SSO.
Minimum 5-7 years experience administering Microsoft 365 for mid-size organizations.
Microsoft certifications such as Microsoft 365 Certified: Endpoint Administrator Associate, Microsoft 365 Certified: Security Administrator, or Microsoft Certified: Identity and Access Administrator.
Familiarity with third-party MDM/MAM and backup solutions (e.g. Duo Federal).
Background supporting remote/hybrid workforces and managing non-domain-joined devices.
Experience with Microsoft Sentinel, Intune Suite features, or Microsoft Copilot for Security.
Excellent documentation skills and experience creating runbooks and operational procedures.
Experience implementing Microsoft Purview (DLP, retention, labels) or equivalent information protection controls
Active security mindset with experience responding to incidents and remediating threats.
Proficiency with PowerShell, Microsoft Graph, and automation for evidence collection and control enforcement.
Experience operating Microsoft Government Cloud tenants (GCC or GCC High) or implementing NIST SP 800-171 controls in Microsoft 365 tenants is highly desired.
Experience in tenant-to-tenant migrations, domain changes, or hybrid identity projects.

Benefits

Information not given or found

Training + Development

Information not given or found

Interview process

Information not given or found

Visa Sponsorship

Information not given or found

Security clearance

Information not given or found