Apply
Systems Administrator (Journeyman)
Hybrid - Alexandria, VA Engineering
Apply
Job Type
Full-time, Contract
Description

ROLE & RESPONSIBILITIES

The Journeyman Systems Administrator will support the implementation, administration, testing, and sustainment of Software Defined Networking (SDN) and Zero Trust Architecture (ZTA) capabilities across Department of Defense Information Network (DoDIN) environments. 

This role provides hands-on configuration and operational support for Software Defined Perimeter (SDP) and micro-segmentation technologies, including AppGate SDP and Illumio, while supporting enterprise SDN initiatives such as Cisco SD-WAN. The position is responsible for platform configuration, endpoint validation, policy enforcement, troubleshooting, documentation, and integration with agency-provided infrastructure services including Active Directory, identity services, and enterprise network transport. 

The ideal candidate possesses a strong foundation in systems administration, networking, cybersecurity, and software-defined technologies and is comfortable operating in mission-critical government environments. 


Systems Administration & Operations 

  • Administer and maintain SDN-enabled infrastructure across DoDIN enclaves
  • Support installation, configuration, and sustainment of virtual and physical network infrastructure components
  • Manage system baselines, patching, configuration control, and change management in accordance with DoD standards 
  • Perform system monitoring, performance tuning, troubleshooting, and fault resolution
  • Support operational readiness and availability of software-defined networking and Zero Trust capabilities

Software Defined Networking (SDN) 

  • Support deployment and operation of SDN technologies including Cisco SD-WAN, Software Defined Access (SDA), and related controller-based networking platforms
  • Maintain SDN controllers, orchestration tools, and policy frameworks
  • Support automation efforts utilizing PowerShell, Python, APIs, Ansible, or similar tools
  • Assist with policy-based routing, traffic engineering, segmentation, and micro-segmentation initiatives 

Zero Trust Architecture (ZTA) & SDP Operations 

  • Perform hands-on configuration and administration of AppGate Software Defined Perimeter (SDP) and Illumio micro-segmentation platforms 
  • Configure entitlement-based routing and access policies to enforce identity-driven access controls
  • Support implementation of Zero Trust Architecture principles and secure access methodologies
  • Assist in defining and validating workload segmentation policies designed to restrict lateral movement and improve security posture
  • Validate platform integration with Active Directory, identity providers, and authentication services

Endpoint Testing & Validation 

  • Execute structured endpoint testing and validation procedures to verify: 
  • Agent functionality 
  • Posture assessment compliance 
  • Secure application access 
  • Policy enforcement behavior 
  • Execute technical test plans developed by senior engineers and architects. 
  • Document testing outcomes, findings, remediation actions, and validation results. 

Cybersecurity & Compliance 

  • Ensure compliance with: 
  • Risk Management Framework (RMF) 
  • DISA STIG requirements 
  • DoD cybersecurity directives 
  • Zero Trust Architecture guidance 
  • Conduct vulnerability remediation and security hardening activities. 
  • Support ATO sustainment activities and audit readiness efforts. 
  • Assist with implementation and validation of identity-based security controls. 

DoDIN Operations Integration 

  • Support integration with DoDIN enterprise services and transport layers. 
  • Coordinate with Network Operations Centers (NOCs), Security Operations Centers (SOCs), and identity management teams. 
  • Troubleshoot operational issues impacting application connectivity, authentication, policy enforcement, and network availability. 
  • Support troubleshooting efforts involving routing paths, segmentation policies, endpoint communications, and authentication flows. 

Documentation & Reporting 

  • Support change management boards (CCB) and configuration control processes. 
  • Provide inputs to weekly, monthly, and incident reporting requirements. 
  • Maintain system documentation, SOPs, configuration artifacts, and deployment procedures. 

Produce technical documentation including: 

  • Test execution results 
  • Validation reports 
  • Network mapping documentation 
  • Configuration records 
  • After-action findings 

Please note: This opening is contingent upon contract award (expected award & start date is June/July 2026).

Requirements

Bachelor’s Degree in Information Technology, Cybersecurity, Computer Science, Engineering, or related field.

Equivalent experience, military training, certifications, or an Associate’s Degree with relevant experience may be substituted. 

  • 3–7 years of experience supporting systems and network traffic behavior/administration & cybersecurity operations
  • Working knowledge of RMF, VMware, automation & scripting tools
  • Must be able to access DoDIN environments and support secure government network operations. 
  • Active Secret clearance; Top Secret clearance preferred or ability to qualify and maintain higher clearances as required

Technical Experience 

  • SDN technologies (Cisco SD-WAN, SDA, VMware NSX, or equivalent) 
  • Windows and Linux administration 
  • Virtualization platforms (VMware, Hyper-V) 
  • Endpoint security technologies 
  • Network troubleshooting and packet analysis 
  • Active Directory integration and authentication concepts 
  • Scripting and automation tools (PowerShell, Python, Ansible) 

Preferred Qualifications 

  • Experience operating within DoDIN or comparable federal enterprise networks 
  • Experience supporting AppGate SDP deployments
  • Experience supporting Illumio micro-segmentation solutions 
  • Familiarity with Zero Trust Architecture concepts and implementation
  • Experience supporting Cisco ISE or enterprise identity services
  • Experience supporting SD-WAN deployments within DoD or federal environments
  • Familiarity with cloud-integrated government environments (AWS GovCloud, Azure Government)
  • Experience supporting CI/CD or automated configuration management pipelines


Required Certifications  

  • CompTIA Security+ (DoD 8570/8140 IAT Level II compliant) 

Preferred Certifications

  • Cisco Certified Network Associate (CCNA) 
  • Cisco Certified Network Professional (CCNP) 
  • VMware VCP 
  • RHCSA or RHCE 
  • Zero Trust or cybersecurity-focused certifications 

Work Environment  

• Hybrid work environment with some travel to customer and integration lab locations as required 

• Participation in after-hours maintenance windows, cutovers, and incident response activities as required 

Apply
View All Jobs