Job description

The Sr. Systems Administrator will support Enterprise Directory Services (EDS), a major support system that provides mission critical directory services to our customer. The Systems Administrator will provide expert technical services in architecting, designing, implementing and operational management of the Enterprise Active Directory (EAD) Services environment comprised of Microsoft Windows 2012R2 and 2016, Active Directory, and various component services. This includes expert technical services necessary to manage a secure role-based enterprise administration solution, provide operational security management services, support the A-130 certification and accreditation of the EDS, and to develop and provide incident and problem management. The scope of work includes: Requirements: • Active Directory Services • PKI Services • DNS Name Resolution Services • Directory Synchronization Services • Technical team leadership • Cross Organization Federated Authentication Services • IT Infrastructure Planning, Architectural Design and Implementation Services • Asset Management and Compliance Reporting Services • Operations and Maintenance Service Additional responsibilities and requirements include: • Team member task planning, coordination, management, and oversight • EDS Operations, consolidation planning, and oversight • Monitor performance of EDS related services level agreements • Manage EDS service-level management processes • Provide continued support to Department level CAB’s by facilitating meetings through the coordination of meeting schedules, agendas, and meeting minutes to include voting records as necessary • Develop, maintain an optimization and standardization strategy and review documentation with government to key stakeholders to achieve consensus • Assist in the development and execution of new IT initiatives directly and indirectly associated with the Department’s implementation of EDS • Provide program support on behalf of the OCIO to external programs requiring the adoption or integration of EDS related components • Ensure replication between the domains of the EDS participant domains • Monitor event logs from forest root domain controllers using MOM, NetIQ, or other software tools. These logs will be maintained per Department guidance. • Monitor and maintain operating system and software service packs and patches for EDS systems per departmental policy and guidance. Test service packs and patches for release and distribution to domain controllers within the EDS domains using Microsoft Systems Management Server and/or Windows Software Update Services (SMS/WSUS) • Maintain EDS related components in Test and Development Lab • Maintain hardware associated with EDS system • Maintain EDS Anti-Virus system and keep EDS systems updated with latest signature files. • Maintain any Department required monitoring programs • Maintain the EDS device PKI services • Monitor EDS Device PKI subordinates to ensure the Certificate Revocation List (CRL) published by is updated and available to EAD users • Maintain the EDS Root namespace. • Maintain EDS DNS servers and services • Maintain the Forest Schema and implement only approved changes • Maintain sites, services, and subnets as required by the EDS participants • Maintain bridgehead servers • Maintain enterprise licensing • Maintain Active Directory Federation Services (ADFS) • Maintain LDAP Directory services • Maintain Directory Synchronization services • Maintain the EDS Support domains for Enterprise infrastructure and application services • Test disaster recovery operations to include a full restore of the EDS to a disconnected test network status quarterly • Participate in periodic meetings and teleconferences as needed to support the EDS • Serve as a liaison to the Enterprise Services Network and ad hoc teams to ensure connectivity to and between the Active Directory domain controllers • Serve as a liaison to the Enterprise Messaging Service Team serving the EDS • Serve as primary configuration management control for the EDS. Prepare change control documentation and ensure compliance with Change Control Guidance • Perform day-to-day research ensuring technology and best practice guidance are applied and used appropriately within the EDS • Provide general technical and operational expert consultation on Microsoft Windows Server 2012, R2, Active Directory and related Microsoft and support and monitoring systems • Develop project plans to transition, administration and operations necessary to support this requirement • Install, Deploy, Migrate and Test Bureau DC’s in the EDS environment • Assist or migrate staff in the development of user account migration scripts and/or procedures • Provide training on systems administration to necessary personnel • Maintain appropriate EDS systems and operations documentation MINIMUM QUALIFICATIONS: • Must be a US Citizen • Must have or be able to obtain an agency-specific clearance prior to starting • 8+ years and Senior Administrator with on-prem Active Directory experience • Must have PKI administration experience • Must have DNS server management experience • Must have experience managing AGPM/GPOs • Must have strong PowerShell scripting experience • Knowledge of LAPS/LAPS-E • Knowledge of Microsoft Azure Active Directory • Technical team lead management experience PREFERRED QUALIFICATIONS: • Knowledge of Office 365 • Knowledge of SCOM • Knowledge of SAML authentication • Knowledge of MIM or other Metadirectory technologies • Knowledge of Programming (i.e., VB or C#)

Requirements