Sr. IT Engineer

Arlington, VA, US • Posted 1 day ago • Updated 4 hours ago
Full Time
On-site
USD $91,000.00 - 170,000.00 per year
Fitment

Dice Job Match Score™

🫥 Flibbertigibetting...

Job Details

Skills

  • Innovation
  • Lifecycle Management
  • STIG
  • Computer Hardware
  • Directory Services
  • LDAP
  • Multi-factor Authentication
  • Atlassian
  • Provisioning
  • SPF
  • Group Policy
  • Workflow
  • Google Apps
  • DevOps
  • IaaS
  • Continuous Integration
  • Continuous Delivery
  • JFrog
  • Amazon EC2
  • Computer Networking
  • GitHub
  • Access Control
  • Cyber Security
  • SEIM
  • Cloud Security
  • System Administration
  • Mobile Device Management
  • Master Data Management
  • Microsoft Azure
  • SSO
  • Policy Administration
  • OS X
  • Microsoft Windows
  • Authentication
  • Scripting
  • Python
  • Bash
  • Windows PowerShell
  • Collaboration
  • DoD
  • Security+
  • Network+
  • SSCP
  • CISSP
  • GSEC
  • Amazon Web Services
  • Cisco
  • Cisco Certifications
  • ITAR
  • FedRAMP
  • SaaS
  • Management
  • IT Asset Management
  • NIST SP 800 Series
  • NIST 800-53
  • Regulatory Compliance
  • Value Engineering
  • SSP
  • Documentation
  • Auditing
  • Wiki
  • Artificial Intelligence
  • Recruiting

Summary

Reports to: IT Manager

Location: Hybrid / Washington DC Metro Area


About Istari Digital

Istari Digital is a government and commercial contracting company that partners with leading defense organizations on classified and ITAR-regulated data projects. We operate in a fast-paced, security-first environment where reliability, compliance, and innovation go hand in hand.

The Role

We're looking for a Sr. IT Engineer to take ownership of our enterprise device management, SaaS ecosystem, systems integrations, and security tooling. This is a senior individual contributor role with high visibility - you'll be the go-to person for keeping our identity, endpoint, and automation infrastructure running smoothly while supporting our DevOps and cybersecurity compliance posture. If you like building things that scale and hate doing the same manual task twice, you'll fit right in.

Core Responsibilities

Endpoint & MDM Management
  • Own end-to-end device lifecycle management across macOS and Windows using JumpCloud MDM, including enrollment, configuration profiles, and policy enforcement
    • Maintain STIG-hardened endpoint configurations and ensure continuous compliance across the device fleet
  • Manage hardware provisioning, and offboarding/wipe procedures for both hardware and software accounts
  • Configure and enforce patching at the OS level and application level
  • Implement and maintain least privileged access across our ecosystem and conditional / geolocation based access to sensitive resources

Identity, Access & SaaS Integrations
  • Administer JumpCloud directory services including SSO, SCIM provisioning, LDAP, and MFA policy enforcement
  • Build and maintain integrations between JumpCloud and downstream SaaS platforms (Google Workspace, GitHub Enterprise, Atlassian, AI tooling, and others)
  • Own user lifecycle automation - provisioning, role changes, and offboarding - across many enterprise platforms
  • Manage Google Workspace administration including shared drives, email authentication (SPF/DKIM/DMARC), group policies, and organizational units
  • Build scripts and workflows (Python, Bash, PowerShell, Google Apps Script, or similar) to automate repetitive IT tasks

DevOps & Cloud Infrastructure
  • Assist in build and implementation of CI/CD pipelines with integrated security tooling (example tooling: SonarQube, Github Copilot, CrowdStrike Falcon Cloud Security, Snyk, Jfrog)
  • Manage AWS infrastructure including EC2, IAM policies, networking, and GovCloud environments to ensure continuous compliance with government NIST 800-171 requirements.
  • Administer GitHub Enterprise including repository management, branch protection policies, and access controls

Cybersecurity Tooling & Compliance
  • Administer and tune SEIM / EDR tooling for endpoint detection, cloud security, and logging operations
  • Support CMMC Level 2, NIST 800-171, and FedRAMP compliance efforts including evidence collection and control documentation

Required Qualifications

  • 7+ years of experience in IT engineering, systems administration, or a related discipline - with a track record of owning complex technical initiatives end-to-end
  • Deep hands-on experience with JumpCloud or a comparable IDaaS/MDM platform (Okta, Azure AD, Jamf, or similar), including SSO, SCIM, and endpoint policy management
  • Strong experience managing macOS and Windows endpoints at scale, including hardened configurations in regulated environments
  • Proficiency with Google Workspace administration across user lifecycle, shared drives, and email authentication
  • Solid scripting skills in at least one language (Python, Bash, PowerShell, or similar) with the ability to translate manual processes into repeatable automation
  • Exceptional documentation skills - you write SOPs, runbooks, and technical guides that people actually use, and you treat documentation as a deliverable, not an afterthought
  • Proven ability to work autonomously in a fast-paced environment, self-prioritize across competing demands, and drive projects to completion with minimal hand-holding
  • A demonstrated appetite for picking up new tooling quickly - you're comfortable being handed something unfamiliar and figuring it out
  • Strong cross-functional collaboration skills, with experience coordinating technical work across multiple teams or stakeholders
  • U.S. Citizenship
  • One or more relevant certifications aligned to the DoD Cyber Workforce Framework (DoDM 8140.03), such as:
    • CompTIA Security+, CySA+, or Network+
    • ISC2 SSCP or CISSP
    • GIAC GSEC ED
    • AWS Solutions Architect or AWS Security Specialty
    • Cisco CCNA or CCNP Security

Preferred
  • Experience working in ITAR, FedRAMP, CMMC, or other regulated/compliance-driven environments - candidates from adjacent regulated industries are also encouraged to apply
  • Hands-on experience with SaaS management platforms (Zylo, Torii, BetterCloud, or similar) or IT asset management tooling
  • Working knowledge of NIST 800-171, NIST 800-53, or similar compliance frameworks - bonus points if you've contributed to SSP documentation or audit evidence packages
  • A habit of leaving things better documented than you found them - whether that's a runbook, a wiki, or an architecture diagram

$91,000 - $170,000 a year

The anticipated compensation range for this position may vary based on experience, skills, qualifications, location, and business needs. In addition to base salary, this role may be eligible for bonuses, equity, and a comprehensive benefits package.

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses and identifying potential inconsistencies or verification signals in application materials based on available information. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
  • Dice Id: 80185038
  • Position Id: 1354eb503d3badbc92f2ce3d4d0091af
  • Posted 1 day ago
Create job alert
Set job alertNever miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Arlington, Virginia

Today

Full-time

Remote or Bethesda, Maryland

Today

Full-time

USD 90,146.00 - 208,672.00 per year

College Park, Maryland

Today

Full-time

Reston, Virginia

Today

Full-time

USD 140,000.00 per year

Search all similar jobs