Job Description

Salary: $107,900 - 195,050 per year Requirements:

• We need expert-level experience engineering Microsoft Intune across Windows, macOS, iOS, and iPadOS.
• We expect advanced PowerShell skills for automation, remediation, and operating system image work.
• We require deep hands-on experience with Microsoft Defender, including XDR, Endpoint, and Cloud Apps.
• We need practical experience with Microsoft Sentinel, Azure Function Apps, and cross-platform telemetry pipelines.
• We require a strong understanding of Conditional Access architecture and identity risk enforcement.
• We need experience supporting ATO control evidence, compliance mapping, and audit preparation.
• We value a growth mindset and openness to learning emerging security domains.
• We expect strong collaboration across Cyber, Operations, Enterprise Architecture, ICAM, and Communications.
• We need excellent communication skills, including clear summaries, user-impact translation, and documentation.
• We require high reliability, ownership, and sound judgment during high-severity incidents.
• We prefer prior experience in federal security, high-compliance, or high-assurance environments.
• We prefer experience with Jamf, Okta connectors, Copilot audit logging, and Graph API operations.
• We prefer experience with mSCP baseline engineering and macOS security hardening.
• We prefer prior involvement in enterprise-wide Conditional Access enforcement.

• We lead the development, implementation, and ongoing management of M365 security policies, standards, and technical guardrails aligned with federal and organizational controls.
• We own governance for data protection capabilities such as classification, labeling, retention, and Data Loss Prevention using Microsoft Purview.
• We define and enforce email security measures including encryption, sensitivity labeling, and secure mail flow to reduce unauthorized disclosure.
• We implement and maintain email encryption solutions such as S/MIME and Microsoft Information Protection.
• We administer and monitor anti-spam, anti-phishing, and anti-malware protections.
• We engineer and validate device-compliance-based Conditional Access policies across Windows, macOS, and mobile platforms.
• We investigate and resolve Conditional Access failures, identity anomalies, and external or guest access issues.
• We design, test, and deploy Intune configuration and compliance policies, including ESP and OOBE workflows.
• We develop remediation scripts to close compliance gaps and enforce security baselines.
• We coordinate enterprise rollouts of urgent vulnerability mitigations and validated vendor fixes.
• We establish and operate a risk management approach to identify, assess, and reduce security risks across the M365 ecosystem.
• We support ATO and control assessment activities by drafting implementation statements, gathering artifacts, and providing audit evidence.
• We lead integration and operational management of Microsoft Defender and Microsoft Sentinel for threat detection, alerting, and response.
• We build and maintain SIEM integrations and ingestion pipelines for third-party logs.
• We tune audit retention, analytic rules, and alert logic to improve detection quality and investigation readiness.
• We provide Tier 3 troubleshooting for device compliance failures, identity and access incidents, telemetry gaps, and OS or app protection issues.
• We partner with cross-functional teams to align security solutions with business goals and support enterprise reviews.
• We stay current on M365 security and compliance updates and drive continuous improvement in posture and operational efficiency.

• API
• Azure
• Cloud
• Copilot
• Flow
• Support
• macOS
• Microsoft Intune
• Mobile
• PowerShell
• Security
• Windows
• iOS
• Confluence
• JIRA
• Microsoft 365
• Office 365
• Slack

More:

We are Leidos, an industry and technology leader serving government and commercial customers with digital and mission-focused innovation. This senior M365 Security and Compliance Administrator role sits within our Information Technology team and supports a GCC tenant in a federal agency context, with a strong focus on device, identity, and M365 security. We offer competitive compensation, health and wellness programs, income protection, paid leave, and retirement benefits. Our headquarters are in Reston, Virginia, and we employ about 47,000 people worldwide. The posted pay range for this position is $107,900 to $195,050, subject to experience, education, skills, and other factors.

last updated 23 week of 2026

Job Tags

Similar Jobs