Job description

About DTS: David T. Scott & Associates, LLC (DTS) is a Service-Disabled Veteran Owned Small Business (SDVOSB) that supports both public- and private-sector clients. We excel in tackling challenges in cybersecurity, program governance, strategic planning, business process efficiency, and learning enhancement. Our team is composed of seasoned professionals with military, civilian, and private-sector backgrounds. At DTS, we grow together—sharing knowledge, solving tough challenges, and providing certified cybersecurity services to federal and commercial organizations. Position Summary: As a Microsoft System Engineer at DTS, you will design, implement, and maintain security solutions across Microsoft environments—including Azure, Microsoft 365, and hybrid infrastructure. You’ll secure our enterprise network, patch and update critical systems, and provide Tier 3 support for performance and outage issues. This role demands a mix of technical expertise, security knowledge, and analytical thinking to drive continuous improvement in a mission-critical setting. Core Responsibilities: • Security Design & Architecture: Design and implement security controls for Microsoft cloud and on-prem environments following Zero Trust and NIST frameworks. • Cloud Operations & Identity Management: Manage corporate identity provisioning using Microsoft Entra, Active Directory, and Microsoft Identity Manager. • Microsoft Stack Support: Provide top-level global support for Microsoft 365 services (Teams, SharePoint, Azure, Defender, Exchange). • Data Protection & Governance: Implement and manage Microsoft Purview solutions for data classification, retention, and compliance. Develop and maintain Data Loss Prevention (DLP) policies to protect sensitive information across Microsoft 365. • Access Controls: Support Azure RBAC, PIM, MFA, and Conditional Access Policies to secure cloud infrastructure. • Migration and Tenant Setup: Configure secure Azure tenants and perform tenant migrations using AvePoint, ensuring data integrity and minimal downtime. • Threat Protection & SIEM: Deploy Microsoft Sentinel, Defender for Endpoint, and Defender for Cloud for proactive threat monitoring and incident response. • Vulnerability Management: Monitor and remediate system vulnerabilities, applying patches and updates as necessary. • Performance Monitoring & Troubleshooting: Identify root causes of outages and performance issues in Microsoft environments and implement corrective actions. • Collaboration & Innovation: Work with IT and business partners to develop new solutions, drive innovation, and align IT capabilities with organizational goals. • After-Hours Support: Occasionally respond to major incidents or planned changes outside regular business hours. Desired Skills & Technologies: • Deep experience in the Microsoft security stack: Entra ID, Intune, Microsoft 365 Defender, Azure Security Center, Microsoft Sentinel, Microsoft Purview • Microsoft 365 administration: Exchange Online, SharePoint Online, Teams, OneDrive • Azure administration: RBAC, PIM, policies, and automation • AvePoint: Expertise in tenant migration and cross-platform data transfer • Security Compliance: Familiarity with CMMC, DoD RMF, NIST SP 800-171, and IA policies • ITIL Change Management and incident response workflows • Experience securing information systems/networks to NIST, CIS, ISO 27001, and other control sets • Windows administration • Firewall administration (e.g., FortiGate, Palo Alto, SonicWall, Cisco) • Scripting experience (e.g., PowerShell, Python) Education, Experience & Certifications: • Bachelor’s Degree in Information Technology, Cybersecurity, or related field • Minimum 3 years of directly related experience • One of the following required certifications (or ability to obtain within 6 months): 1. AZ-500: Microsoft Azure Security Engineer 2. SC-300: Microsoft Identity and Access Administrator 3. SC-200: Microsoft Security Operations Analyst 4. AZ-104: Microsoft Certified: Azure Administrator Associate Preferred Certifications: • Certified Information Systems Auditor (CISA) • CMMC Registered Practitioner • CompTIA Security+ • Microsoft DevOps Engineer

Requirements