Job Description

Systems Administrator

Contract 40 hours weekly, 3+ years

Work from home:
Remote and onsite work will be required for this position. Schedule TBD by hiring manager

Clearance:
Willing to review candidates who can obtain a clearance

Interview process:
1st round interview will be a phone screen. 2nd round interview will be a Zoom with additional team members.

Description:
Maintains operation of multi-user computer systems, including coordination of infrastructure and cloud responsibilities. Develops and designs core operating system builds. Responsible for coding, virtualization, and automation of systems. Sets up administrator and service accounts, maintains an active directory of users and system documentation, tunes system performance, installs system-wide software, and allocates mass storage space. Assesses and resolves user access problems related to security controls to minimize business impact and risk exposure. Identifies and evaluates vendor products and establishes vendor monitoring and tracking processes. Performs capacity planning and monitors/tunes systems. Recommends appropriate platforms for purchase, coordinates installation, and provides backup recovery. Serves as a point of escalation for major incidents that are unresolved at the helpdesk level. Develops and monitors policies and standards for allocation related to the use of computing resources. May draft general IT communications to end-users including notifications of outages/downtimes. May serve as the primary liaison for mergers, acquisitions, and divesture activities as it relates to user access, network, security, and support.

The Laboratory's Identity and Access Management (IAM) Team, as part of the Information Service Department, is seeking a system administrator to participate in daily operations for various IT systems that run the Lab's identity and PKI services. The team handles identity management, single sign-on, multi-factor authentication and certificate management. This is a great opportunity to join a dynamic team working to support the Lab's mission of technology in support of national defense.

Responsibilities include but not limited to:
•Deploying, maintaining, monitoring, patching and overall system administration for directory (Active Directory, LDAP, SSO) and Public Key Infrastructure (PKI) systems.
•Ability to problem solve logon and certificate issues for authentication and Email protections. .
•Management of directory accounts in both LDAP and Active Directory is required including group policy management and security group management.
•Support for PKI-related operational tasks is important including CRL/OCSP updates, certificate review and approval and issuance of SSL certs.
•Resolving escalated support tickets involving both directory and PKI-related issues including working with vendors is part of position.
•The successful candidate will possess good interpersonal communication and organizational skills. Be able to build relationships, work independently, along with being accountable and timely are core skills. Additionally, having solid writing and comfortability for public speaking as necessary. Empathy and respect for diversity of ideas and cultures are valued in connecting with teammates and staff members.

Must Have:
•Systems and network engineering skills
•In-depth hands-on experience with Microsoft Windows Server and/or Linux Enterprise Red Hat
•Understanding of core network protocols (DNS, DHCP, SNTP, SNMP) and troubleshooting (packet capture and analysis)
•Experience with cyber security operations best practices including systems vulnerability scans and remediation, bastion / jump hosts and multi-factor authentication are key.
•Configuring systems for enterprise monitoring and alerting

Nice to Have:
•Scripting capability (via PowerShell)
•Familiarity with mulit-factor authentication tokens (smart cards, Yubikeys
•Experience with security controls including NIST 800-53 / 171 including audit compliance are as well as familiarity with cloud-based directories and identity solutions (e.g. Azure Active Directory)
•Knowledge / and or technical certification of the following may prove very beneficial to the successful candidate: MCSE, CISSP or Security Plus, AWS.
•Familiarity in working with ITSM best practices and modern tools like ServiceNow
•An understanding of ITIL v3/4
•Active clearance is highly preferred
 

Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!

Apply Online