Description

Goals and Objectives:
• Maintain secure posture during migration
• Ensure security tooling is configured and validated
• Reduce internal workload via augmentation
• Enable focus on architecture and governance
• Maintain alignment with NIST SP 800-171 / CMMC

Scope of Work:

Included Services:
The Contractor shall provide full-time Cyber Professional Services to support both the Secure Horizons Program and the Data Loss Prevention (DLP) project.

Tasks and Responsibilities:

1. Security Configuration & Hardening

• Assist with the implementation and validation of:
  • CIS baseline configurations (L1 minimum)
  • Secure configuration of endpoints, identities, and cloud services
• Validate security configurations across:
  • Entra ID (Azure AD)
  • Intune-managed devices
  • Microsoft 365 services
  • Identify and remediate configuration drift

2. Vulnerability Management

• Validate agent deployment and reporting coverage
• Perform vulnerability triage and prioritization
• Track remediation progress and validate closure
• Identify gaps in scanning coverage (devices, subnets, cloud resources)

3. Microsoft Defender Support

• Assist with configuration, tuning, and validation of:
  • Microsoft Defender for Endpoint
  • Defender for Cloud Apps
  • Defender for Identity
• Ensure:
  • Devices are properly onboarded
  • Telemetry is being received
  • Alerts are actionable and tuned
• Support Advanced Hunting queries and validation
• Assist configuration and install of ARC on servers

4. Logging & Monitoring

• Validate log ingestion into Microsoft Sentinel and/or SIEM
• Ensure telemetry coverage across:
  • Endpoints
  • Identities
  • Cloud applications
• Identify gaps in logging or integration
• Assist in alert tuning and reduction of false positives
• Validate integrations (e.g., Okta, Defender, M365, network tools)

5. Identity

• Okta MFA support
• Access Reviews

6. Migration Security Validation

• Validate security posture before, during, and after migration waves:
  • Devices properly onboarded to security tools
  • Policies applied correctly
  • No loss of visibility or control
• Identify and escalate security gaps introduced by migration activities
• Mobile Device MAM/MDM support

7. Data Loss Prevention

• Design and Concept Review, in particular to cover AI workloads and telemetry received via

8. Defender CSPM/AI modules

• Definition and implementation of related:
  • Purview Rules
  • Intune Policies
  • Varonis Configuration
  • CSPM/AI Monitoring and the related Sentinel Alerting
  • BAU process (playbooks, support, changes)
  • Creation of Documentation and Training Material in SCORM 2.0 format in collaboration with our internal training department

Out of Scope:

• The Contractor System Administrator will not be responsible for
  • Application Development
  • System Administration
  • Network Design, Maintenance and Engineering
  • Data Science and Machine Learning
  • Cloud or Infrastructure Architecture
  • Project Management
  • Enterprise IT Governance

Key Requirements

• Security clearance is not required.
• Experience with Defender, Sentinel, Intune, Entra ID, Okta, Tenable, Purview, Varonis, AI solutions and related security monitoring, SCORM 2.0
• Knowledge of NIST 800-171 / CMMC
• SOC / security operations experience
• Preferred certifications: SC-200, CISSP

Key Skills

Education

Bachelor's degree