Role Title:
EL1 ICT Systems Administrator / Cloud & Identity Specialist
Engagement Details
* RFQ:
ID LH-05490 – ICT Labour Hire
* Buyer:
IP Australia
* Estimated Start Date:
8 April 2026
* Initial Contract Duration:
12 months
* Extension Options:
Up to two (2) × 12-month extensions
* Location:
ACT
* Working Arrangements:
Hybrid
* Hours:
Up to 40 hours per week
* Experience Level:
EL1 equivalent
* Security Clearance:
Baseline
Role Overview
The EL1 ICT Systems Administrator / Cloud & Identity Specialist will provide
Level 2 and Level 3 systems administration and technical support
across a complex enterprise ICT environment encompassing
Desktop Support, Infrastructure Services, and Cloud platforms
.
The role supports a modern digital workplace using
Microsoft 365, Microsoft Azure, Amazon Web Services (AWS), Azure Virtual Desktop (AVD)
, and contemporary endpoint, identity, and security technologies. The position requires strong hands-on technical capability, the ability to resolve complex issues, and effective engagement with internal stakeholders and external vendors.
Key Duties and Responsibilities
Cloud, Infrastructure & Platform Support
* Administer, configure, monitor, and support
Microsoft 365, Microsoft Azure, and AWS
environments.
* Support
Azure Virtual Desktop (AVD)
and associated Microsoft cloud services.
* Administer server and application environments through
AWS management interfaces
, including the
EC2 Management Console
and
AWS Systems Manager
for application deployment and configuration.
Desktop & Endpoint Management
* Provide
Level 2 and Level 3 desktop support
across a complex enterprise environment.
* Manage modern endpoint environments using
Microsoft Intune
, including:
* Endpoint and security policy configuration
* Application packaging and deployment
* PowerShell scripting for automation and remediation
* Advanced troubleshooting of Windows devices and user environments
Identity & Access Management
* Administer and support
Active Directory
and
Microsoft Entra ID
.
* Design, implement, and maintain
Conditional Access policies
aligned with organisational security requirements.
* Manage
Enterprise Applications
and
App Registrations
within Azure.
* Design and support authentication and integration solutions using:
* SAML 2.0
* OAuth 2.0
* OpenID Connect (OIDC)
* WS-Federation
* Multi-Factor Authentication (MFA)
and
passwordless authentication
Security, Governance & Compliance
* Assist in the implementation and maintenance of
governance and security frameworks
, including:
* Role-Based Access Control (RBAC) models
* Access lifecycle management
* Policy and standards documentation
* Implement and manage
compliance, data protection, and information governance
capabilities using
Microsoft Purview
.
* Monitor, detect, and respond to security threats using
Microsoft Defender XDR
, contributing to a robust enterprise security posture.
Microsoft 365 SME & Advisory Support
* Provide
subject matter expert (SME) guidance
across the Microsoft 365 suite, including:
* Microsoft Teams
* SharePoint Online
* Outlook and Exchange Online
* Collaboration and productivity services
* Advise on best practices, service improvements, process efficiencies, and technical implementations to optimise organisational outcomes.
Documentation & Knowledge Management
* Maintain accurate and comprehensive
technical documentation
covering desktop, infrastructure, cloud, and identity environments.
* Develop and update system configurations, integration workflows, and recovery procedures using:
* ServiceNow Knowledge Base
* SharePoint
* Confluence
Stakeholder Engagement & Team Contribution
* Work collaboratively with internal business units, ICT teams, and external vendors to resolve complex technical issues.
* Demonstrate strong written and verbal communication skills.
* Share knowledge, uplift team capability, and maintain a people-focused, collaborative approach.
Selection Criteria
1. Microsoft Platforms, Endpoint & Cloud Administration (30%)
Demonstrated extensive knowledge and experience in managing, configuring, monitoring, and troubleshooting
Microsoft Operating Systems
,
Microsoft Intune
, the
Microsoft 365 platform
,
Azure Virtual Desktop (AVD)
, and
Microsoft AI tools
. Proven capability administering and supporting server environments through
AWS management interfaces
, including tools such as the
EC2 Management Console
and
AWS Systems Manager
for application deployment.
1. Authentication & Application Integrations (20%)
Demonstrated ability to design, configure, and troubleshoot complex authentication and application integrations in
Microsoft Azure
, including the management of
Enterprise Applications
and
App Registrations
. Proven experience implementing and supporting authentication protocols such as
SAML 2.0
,
OAuth 2.0
,
OpenID Connect (OIDC)
,
WS-Federation
, and
MFA/passwordless authentication
flows.
1. Identity, Security & Governance (20%)
Extensive experience administering and configuring
Active Directory
and
Microsoft Entra ID
across enterprise environments. Demonstrated capability designing and enforcing secure access policies using
Microsoft Entra Conditional Access
, implementing governance, compliance, and data protection through
Microsoft Purview
, and monitoring, detecting, and responding to security threats using
Microsoft Defender XDR
.
1. Microsoft 365 SME Capability (20%)
Demonstrated ability to consult across the full
Microsoft 365 suite
, including
Teams, SharePoint, Outlook, and collaboration and productivity services
, providing SME-level advice on best practices, service improvements, process efficiencies, and technical implementation to optimise organisational outcomes.
1. Communication & Team Engagement (10%)
Strong written and oral communication skills, a people-focused attitude, and a demonstrated willingness to share knowledge, collaborate effectively with team members, and engage constructively with stakeholders.
Key Attributes
* Strong analytical and problem-solving capability
* Ability to work autonomously and within a team
* Experience operating in complex enterprise or government environments
* Strong focus on security, documentation, and continuous improvement