Systems Administrator; Journeyman Security Clearance

Journeyman Systems Administrator Role & Responsibilities

The Journeyman Systems Administrator will support the implementation, administration, testing, and sustainment of Software‑Defined Networking (SDN) and Zero‑Trust Architecture (ZTA) capabilities across Department of Defense Information Network (DoDIN) environments. This role provides hands‑on configuration and operational support for Software‑Defined Perimeter (SDP) and micro‑segmentation technologies, including App Gate SDP and Illumio, while supporting enterprise SDN initiatives such as Cisco SD‑WAN. The position is responsible for platform configuration, endpoint validation, policy enforcement, troubleshooting, documentation, and integration with agency‑provided infrastructure services including Active Directory, identity services, and enterprise network transport.

The ideal candidate possesses a strong foundation in systems administration, networking, cybersecurity, and software‑defined technologies and is comfortable operating in mission‑critical government environments.

• Administer and maintain SDN‑enabled infrastructure across DoDIN enclaves.
• Support installation, configuration, and sustainment of virtual and physical network infrastructure components.
• Manage system baselines, patching, configuration control, and change management in accordance with DoD standards.
• Perform system monitoring, performance tuning, troubleshooting, and fault resolution.
• Support operational readiness and availability of software‑defined networking and Zero‑Trust capabilities.

• Support deployment and operation of SDN technologies including Cisco SD‑WAN, Software Defined Access (SDA), and related controller‑based networking platforms.
• Maintain SDN controllers, orchestration tools, and policy frameworks.
• Support automation efforts utilizing Power Shell, Python, APIs, Ansible, or similar tools.
• Assist with policy‑based routing, traffic engineering, segmentation, and micro‑segmentation initiatives.

• Perform hands‑on configuration and administration of App Gate Software Defined Perimeter (SDP) and Illumio micro‑segmentation platforms.
• Configure entitlement‑based routing and access policies to enforce identity‑driven access controls.
• Support implementation of Zero‑Trust Architecture principles and secure access methodologies.
• Assist in defining and validating workload segmentation policies designed to restrict lateral movement and improve security posture.
• Validate platform integration with Active Directory, identity providers, and authentication services.

• Execute structured endpoint testing and validation procedures to verify agent functionality, posture assessment compliance, secure application access, and policy enforcement behavior.
• Execute technical test plans developed by senior engineers and architects.
• Document testing outcomes, findings, remediation actions, and validation results.

• Ensure compliance with Risk Management Framework (RMF), DISA STIG requirements, DoD cybersecurity directives, and Zero‑Trust Architecture guidance.
• Conduct vulnerability remediation and security hardening activities.
• Support ATO sustainment activities and audit readiness efforts.
• Assist with implementation and validation of identity‑based security controls.

• Support integration with DoDIN enterprise services and transport layers.
• Coordinate with Network Operations Centers (NOCs), Security Operations Centers (SOCs), and identity management teams.
• Troubleshoot operational issues impacting application connectivity, authentication, policy enforcement, and network availability.
• Support troubleshooting efforts involving routing paths, segmentation policies, endpoint communications, and authentication flows.

• Support change management boards (CCB) and configuration control processes.
• Provide inputs to weekly, monthly, and incident reporting requirements.
• Maintain system documentation, SOPs, configuration artifacts, and deployment procedures.
• Produce technical documentation including test…