Talent.com
IT Manager- Systems Architecture

IT Manager- Systems Architecture

Hanwha Defense USA IncMcLean, VA, US
30+ days ago
Job type
  • Full-time
Job description

Job Description

Job Description

Position Overview

Execute the design, implementation, and operation of a comprehensive Microsoft GCC High technology stack within a FOCI-mitigated, CMMC Level 2 compliant defense manufacturing environment. Reporting to the Security Director, this role requires a hands-on technical leader who will architect, deploy, and maintain critical infrastructure while ensuring continuous and secure compliance with DoD requirements. This is a unique opportunity to build an enterprise IT environment from the ground up, establishing the technical foundation for a rapidly growing defense contractor.

Essential Duties and Responsibilities :

Technical Implementation

  • Design and manage a Microsoft GCC High tenant including Entra ID, Conditional Access policies, Intune MDM, and Sentinel SIEM configurations
  • Implement and maintain the full Atlassian suite (JIRA Service Management, Bitbucket Data Center, Confluence) including backend administration, SSO and webhook integrations
  • Configure and manage Azure Stack HCI infrastructure, virtualization platforms, and hybrid cloud connectivity to AWS GovCloud
  • Deploy Zero Trust architecture using Zscaler ZPA, Microsoft Conditional Access, and FIPS-compliant Cisco Meraki networking
  • Implement security stack including SentinelOne EDR, Tenable.sc vulnerability management, Microsoft Purview DLP, and Delinea Secret Server PAM
  • Configure automated patch management through PatchMyPC and Microsoft Autopilot for zero-touch provisioning
  • Establish managed file transfer capabilities (MOVEit) and encrypted media controls (DataLocker) for CUI handling
  • Manage and coordinate external consultants and contractors for CMMC assessment firms, and specialized security vendors; serve as primary technical liaison ensuring knowledge transfer, documentation of configurations, and successful transition of responsibilities to internal operations
  • Design and implement Infrastructure as Code (IaC) using Ansible playbooks for automated deployment, configuration management, and compliance enforcement across Windows and Linux environments
  • Deploy containerized applications using Docker and orchestration platforms for microservices architecture

Compliance & Security Operations

  • Maintain continuous CMMC Level 2 compliance through technical control implementation and evidence collection
  • Configure and operate security monitoring tools ensuring 24 / 7 visibility of CUI environments
  • Implement ITAR export control technical safeguards and FOCI mitigation measures
  • Develop and maintain System Security Plans (SSP), POA&Ms, and technical compliance documentation
  • Execute vulnerability management program with weekly scanning and monthly remediation cycles
  • Coordinate with external assessors for CMMC certification and annual compliance audits
  • Implement and maintain physical security integrations (Kastle Systems, Traction Guest)

    • Process & Automation

  • Develop and maintain IT policies, procedures, and technical standards aligned with NIST 800-171 and CMMC Level 2
  • Create automated workflows in JIRA Service Management for change control, incident response, and service requests
  • Implement AI-powered solutions for operational efficiency
  • Design disaster recovery procedures leveraging Veeam and Zerto capabilities
  • Build PowerShell and Azure Automation runbooks for routine tasks
  • Establish Configuration Management Database (CMDB) and asset tracking systems
  • Performs other related duties as assigned.

    • Qualifications

    Technical Expertise

  • 5+ years hands-on experience with Microsoft Azure / M365 in government or regulated environments
  • Cisco networking proficiency required , including configuration and management of Meraki cloud-managed infrastructure, VLANs, network segmentation, FIPS-compliant implementations, and troubleshooting complex routing / switching issues
  • Strong expertise in Atlassian suite backend administration (JIRA, Confluence, Bitbucket) including database management
  • Deep experience implementing and managing GCC High tenants, including migration from commercial tenants
  • Expert knowledge of CMMC Level 2, NIST 800-171, and DFARS requirements
  • Prior experience with enterprise security tools (SIEM, EDR, DLP, PAM, vulnerability scanners)
  • Strong PowerShell scripting and automation capabilities
  • Strong Experience with virtualization platforms (Hyper-V, Azure Stack HCI) and backup solutions
  • Experience with configuration management and automation using Ansible, including playbook development, role creation, and AWX / Tower for enterprise orchestration
  • Hands-on containerization experience with Docker, including Dockerfile creation

    • Compliance & Regulatory

  • Direct experience in ITAR-controlled environments with understanding of export control requirements
  • Knowledge of FOCI mitigation measures and foreign person restrictions
  • Experience preparing for and supporting CMMC / DIBCAC assessments
  • Great Understanding of CUI marking, handling, and storage requirements

    • Leadership & Communication

  • Ability to work autonomously while aligning with organizational vision
  • Strong technical documentation and procedure writing skills
  • Experience presenting technical concepts to non-technical stakeholders
  • Proven ability to manage multiple complex projects simultaneously
  • Comfort working in rapidly changing, high-growth environments

    • Education / Experience

  • Bachelor’s degree in computer science, Information Technology, Cybersecurity, or related field
  • Equivalent combination of education and experience will be considered

    • Preferred Qualifications :

    Certifications

  • Security certifications : CISSP, CCSP, or Security+
  • CMMC Certified Professional (CCP) or Certified Assessor (CCA)
  • Atlassian certifications (ACP-620, ACP-120)
  • Cisco Certified Network Associate (CCNA)
  • Meraki Solutions Specialist Certification (CMSS)

    • Advanced Skills

  • AI / ML implementation experience
  • Experience with Zero Trust architecture design and implementation
  • Knowledge of defense contractor business processes and workflows
  • Experience with KnowBe4 security awareness platform administration
  • Familiarity with Deltek Costpoint or similar GovCon ERP systems
  • Secret or higher security clearance (or ability to obtain)

    • Physical Demands / Work Environment :

  • Full-time on-site position with some remote work flexibility
  • Must be US Citizen
  • Ability to lift to 50 lbs. for server / equipment installation
  • On-call rotation for critical infrastructure support
    • Create a job alert for this search

    Manager Architecture • McLean, VA, US