IT Manager - C1GS

Overview

The company is seeking a hands‑on IT Manager to own day‑to‑day IT operations, cloud systems administration, endpoint management, user support, and cybersecurity compliance for a government contracting organization. The environment is cloud‑first, with most systems residing in Microsoft GCC High and no physical IT infrastructure other than company‑issued laptops. This role will support approximately 40 users and will be responsible for onboarding, offboarding, endpoint provisioning, access control, help desk support, BYOD policy oversight, ISO/IEC 27001 compliance support, and preparation for and ongoing maintenance of CMMC Level 2 compliance.

• Manage day‑to‑day IT operations for a remote workforce of approximately 40 users.
• Provide Tier 1/Tier 2 user support for hardware, software, access, connectivity, Microsoft 365, Teams, SharePoint, One Drive, email, endpoint, and account issues.
• Manage the help desk/ticketing process, including intake, prioritization, resolution, documentation, escalation, and reporting.
• Support onboarding and offboarding of employees, contractors, and consultants, including account creation, permissions, device provisioning, license assignment, data retention, and access removal.
• Image, configure, ship, recover, and maintain company‑issued laptops using secure and repeatable processes.
• Maintain endpoint standards, including patching, encryption, antivirus/EDR, configuration baselines, local admin restrictions, vulnerability remediation, and inventory tracking.
• Manage remote device administration using tools such as Microsoft Intune, Autopilot, Defender, Entra , and related endpoint management platforms.
• Coordinate with external IT, cybersecurity, licensing, hardware, and compliance vendors as needed.

• Administer Microsoft 365 GCC High, including user accounts, groups, licenses, permissions, Exchange Online, Teams, SharePoint, One Drive, Entra , Conditional Access, MFA, and security policies.
• Monitor and maintain cloud security configurations, including identity, access, device compliance, data loss prevention, audit logging, and retention policies.
• Support secure collaboration with customers, subcontractors, consultants, parent‑company users, and affiliated users where applicable.
• Maintain administrative documentation, configuration records, change logs, and standard operating procedures.

• Support the company's ISO/IEC 27001‑certified information security management system.
• Lead or materially support the company's effort to achieve and maintain CMMC Level 2 compliance.
• Maintain documentation required for CMMC, including the System Security Plan, POA&M, asset inventory, policies, procedures, control evidence, access reviews, incident response records, training evidence, vulnerability management records, and configuration baselines.
• Coordinate with external CMMC consultants, Registered Provider Organizations, C3
  
  PAOs, auditors, or assessors as required.
• Help maintain compliance with applicable NIST SP 800‑171, DFARS cybersecurity requirements, CUI, FCI, ISO/IEC 27001, and customer security obligations.

• Manage and enforce the company's BYOD policy.
• Ensure personal devices used for company business meet security, access, encryption, authentication, and data protection requirements.
• Maintain approved device standards and help implement controls to limit company data exposure on unmanaged or non‑compliant devices.
• Support periodic access reviews, endpoint audits, and device compliance reporting.

• Monitor user access, endpoint health, suspicious activity, and compliance posture.
• Support incident response, including user account compromise, lost or stolen laptops, phishing events, malware alerts, unauthorized access, and data exposure incidents.
• Assist with security awareness training, phishing simulations, acceptable use enforcement, and user education.
• Maintain disaster recovery, backup, data retention, and business continuity procedures relevant to cloud systems and endpoints.

• Hands‑on experience…