Job Requirements
Alexandria, VA
Secret Polygraph not specified
Early Career (2+ yrs experience)
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
ROLE & RESPONSIBILITIES
The Journeyman Systems Administrator will support the implementation, administration, testing, and sustainment of Software Defined Networking (SDN) and Zero Trust Architecture (ZTA) capabilities across Department of Defense Information Network (DoDIN) environments.
This role provides hands-on configuration and operational support for Software Defined Perimeter (SDP) and micro-segmentation technologies, including AppGate SDP and Illumio, while supporting enterprise SDN initiatives such as Cisco SD-WAN. The position is responsible for platform configuration, endpoint validation, policy enforcement, troubleshooting, documentation, and integration with agency-provided infrastructure services including Active Directory, identity services, and enterprise network transport.
The ideal candidate possesses a strong foundation in systems administration, networking, cybersecurity, and software-defined technologies and is comfortable operating in mission-critical government environments.
Systems Administration & Operations
Administer and maintain SDN-enabled infrastructure across DoDIN enclaves
Support installation, configuration, and sustainment of virtual and physical network infrastructure components
Manage system baselines, patching, configuration control, and change management in accordance with DoD standards
Perform system monitoring, performance tuning, troubleshooting, and fault resolution
Support operational readiness and availability of software-defined networking and Zero Trust capabilities
Software Defined Networking (SDN)
Support deployment and operation of SDN technologies including Cisco SD-WAN, Software Defined Access (SDA), and related controller-based networking platforms
Maintain SDN controllers, orchestration tools, and policy frameworks
Support automation efforts utilizing PowerShell, Python, APIs, Ansible, or similar tools
Assist with policy-based routing, traffic engineering, segmentation, and micro-segmentation initiatives
Zero Trust Architecture (ZTA) & SDP Operations
Perform hands-on configuration and administration of AppGate Software Defined Perimeter (SDP) and Illumio micro-segmentation platforms
Configure entitlement-based routing and access policies to enforce identity-driven access controls
Support implementation of Zero Trust Architecture principles and secure access methodologies
Assist in defining and validating workload segmentation policies designed to restrict lateral movement and improve security posture
Validate platform integration with Active Directory, identity providers, and authentication services
Endpoint Testing & Validation
Execute structured endpoint testing and validation procedures to verify:
Agent functionality
Posture assessment compliance
Secure application access
Policy enforcement behavior
Execute technical test plans developed by senior engineers and architects.
Document testing outcomes, findings, remediation actions, and validation results.
Cybersecurity & Compliance
Ensure compliance with:
Risk Management Framework (RMF)
DISA STIG requirements
DoD cybersecurity directives
Zero Trust Architecture guidance
Conduct vulnerability remediation and security hardening activities.
Support ATO sustainment activities and audit readiness efforts.
Assist with implementation and validation of identity-based security controls.
DoDIN Operations Integration
Support integration with DoDIN enterprise services and transport layers.
Coordinate with Network Operations Centers (NOCs), Security Operations Centers (SOCs), and identity management teams.
Troubleshoot operational issues impacting application connectivity, authentication, policy enforcement, and network availability.
Support troubleshooting efforts involving routing paths, segmentation policies, endpoint communications, and authentication flows.
Documentation & Reporting
Support change management boards (CCB) and configuration control processes.
Provide inputs to weekly, monthly, and incident reporting requirements.
Maintain system documentation, SOPs, configuration artifacts, and deployment procedures.
Produce technical documentation including:
Test execution results
Validation reports
Network mapping documentation
Configuration records
After-action findings
Requirements
Bachelor’s Degree in Information Technology, Cybersecurity, Computer Science, Engineering, or related field.
Equivalent experience, military training, certifications, or an Associate’s Degree with relevant experience may be substituted.
3–7 years of experience supporting systems and network traffic behavior/administration & cybersecurity operations
Working knowledge of RMF, VMware, automation & scripting tools
Must be able to access DoDIN environments and support secure government network operations.
Active Secret clearance; Top Secret clearance preferred or ability to qualify and maintain higher clearances as required
Technical Experience
SDN technologies (Cisco SD-WAN, SDA, VMware NSX, or equivalent)
Windows and Linux administration
Virtualization platforms (VMware, Hyper-V)
Endpoint security technologies
Network troubleshooting and packet analysis
Active Directory integration and authentication concepts
Scripting and automation tools (PowerShell, Python, Ansible)
Preferred Qualifications
Experience operating within DoDIN or comparable federal enterprise networks
Experience supporting AppGate SDP deployments
Experience supporting Illumio micro-segmentation solutions
Familiarity with Zero Trust Architecture concepts and implementation
Experience supporting Cisco ISE or enterprise identity services
Experience supporting SD-WAN deployments within DoD or federal environments
Familiarity with cloud-integrated government environments (AWS GovCloud, Azure Government)
Experience supporting CI/CD or automated configuration management pipelines
Required Certifications
CompTIA Security+ (DoD 8570/8140 IAT Level II compliant)
Preferred Certifications
Cisco Certified Network Associate (CCNA)
Cisco Certified Network Professional (CCNP)
VMware VCP
RHCSA or RHCE
Zero Trust or cybersecurity-focused certifications
Work Environment
• Hybrid work environment with some travel to customer and integration lab locations as required
• Participation in after-hours maintenance windows, cutovers, and incident response activities as required
The Journeyman Systems Administrator will support the implementation, administration, testing, and sustainment of Software Defined Networking (SDN) and Zero Trust Architecture (ZTA) capabilities across Department of Defense Information Network (DoDIN) environments.
This role provides hands-on configuration and operational support for Software Defined Perimeter (SDP) and micro-segmentation technologies, including AppGate SDP and Illumio, while supporting enterprise SDN initiatives such as Cisco SD-WAN. The position is responsible for platform configuration, endpoint validation, policy enforcement, troubleshooting, documentation, and integration with agency-provided infrastructure services including Active Directory, identity services, and enterprise network transport.
The ideal candidate possesses a strong foundation in systems administration, networking, cybersecurity, and software-defined technologies and is comfortable operating in mission-critical government environments.
Systems Administration & Operations
Administer and maintain SDN-enabled infrastructure across DoDIN enclaves
Support installation, configuration, and sustainment of virtual and physical network infrastructure components
Manage system baselines, patching, configuration control, and change management in accordance with DoD standards
Perform system monitoring, performance tuning, troubleshooting, and fault resolution
Support operational readiness and availability of software-defined networking and Zero Trust capabilities
Software Defined Networking (SDN)
Support deployment and operation of SDN technologies including Cisco SD-WAN, Software Defined Access (SDA), and related controller-based networking platforms
Maintain SDN controllers, orchestration tools, and policy frameworks
Support automation efforts utilizing PowerShell, Python, APIs, Ansible, or similar tools
Assist with policy-based routing, traffic engineering, segmentation, and micro-segmentation initiatives
Zero Trust Architecture (ZTA) & SDP Operations
Perform hands-on configuration and administration of AppGate Software Defined Perimeter (SDP) and Illumio micro-segmentation platforms
Configure entitlement-based routing and access policies to enforce identity-driven access controls
Support implementation of Zero Trust Architecture principles and secure access methodologies
Assist in defining and validating workload segmentation policies designed to restrict lateral movement and improve security posture
Validate platform integration with Active Directory, identity providers, and authentication services
Endpoint Testing & Validation
Execute structured endpoint testing and validation procedures to verify:
Agent functionality
Posture assessment compliance
Secure application access
Policy enforcement behavior
Execute technical test plans developed by senior engineers and architects.
Document testing outcomes, findings, remediation actions, and validation results.
Cybersecurity & Compliance
Ensure compliance with:
Risk Management Framework (RMF)
DISA STIG requirements
DoD cybersecurity directives
Zero Trust Architecture guidance
Conduct vulnerability remediation and security hardening activities.
Support ATO sustainment activities and audit readiness efforts.
Assist with implementation and validation of identity-based security controls.
DoDIN Operations Integration
Support integration with DoDIN enterprise services and transport layers.
Coordinate with Network Operations Centers (NOCs), Security Operations Centers (SOCs), and identity management teams.
Troubleshoot operational issues impacting application connectivity, authentication, policy enforcement, and network availability.
Support troubleshooting efforts involving routing paths, segmentation policies, endpoint communications, and authentication flows.
Documentation & Reporting
Support change management boards (CCB) and configuration control processes.
Provide inputs to weekly, monthly, and incident reporting requirements.
Maintain system documentation, SOPs, configuration artifacts, and deployment procedures.
Produce technical documentation including:
Test execution results
Validation reports
Network mapping documentation
Configuration records
After-action findings
Requirements
Bachelor’s Degree in Information Technology, Cybersecurity, Computer Science, Engineering, or related field.
Equivalent experience, military training, certifications, or an Associate’s Degree with relevant experience may be substituted.
3–7 years of experience supporting systems and network traffic behavior/administration & cybersecurity operations
Working knowledge of RMF, VMware, automation & scripting tools
Must be able to access DoDIN environments and support secure government network operations.
Active Secret clearance; Top Secret clearance preferred or ability to qualify and maintain higher clearances as required
Technical Experience
SDN technologies (Cisco SD-WAN, SDA, VMware NSX, or equivalent)
Windows and Linux administration
Virtualization platforms (VMware, Hyper-V)
Endpoint security technologies
Network troubleshooting and packet analysis
Active Directory integration and authentication concepts
Scripting and automation tools (PowerShell, Python, Ansible)
Preferred Qualifications
Experience operating within DoDIN or comparable federal enterprise networks
Experience supporting AppGate SDP deployments
Experience supporting Illumio micro-segmentation solutions
Familiarity with Zero Trust Architecture concepts and implementation
Experience supporting Cisco ISE or enterprise identity services
Experience supporting SD-WAN deployments within DoD or federal environments
Familiarity with cloud-integrated government environments (AWS GovCloud, Azure Government)
Experience supporting CI/CD or automated configuration management pipelines
Required Certifications
CompTIA Security+ (DoD 8570/8140 IAT Level II compliant)
Preferred Certifications
Cisco Certified Network Associate (CCNA)
Cisco Certified Network Professional (CCNP)
VMware VCP
RHCSA or RHCE
Zero Trust or cybersecurity-focused certifications
Work Environment
• Hybrid work environment with some travel to customer and integration lab locations as required
• Participation in after-hours maintenance windows, cutovers, and incident response activities as required
group id: 91173057