SYSTEM ADMINISTRATOR 3

About The Position

Requirements

• Bachelor’s degree in Computer Science or a related field.
• 2–4 years of cloud engineering experience, including coding, debugging, and application configuration.
• Proficiency in Microsoft Active Directory and IDAM services.
• Experience with Continuous Integration/Continuous Deployment (CI/CD) and Developer Security Operations (DevSecOps) toolchains.
• U.S. Citizenship with the ability to obtain a Department of Defense (DoD) Top Secret clearance and Security+ certification.

Nice To Haves

• Active DoD Top Secret clearance
• Cloud certification (e.g. Microsoft Certified: Azure Associate)
• Experience implementing DISA (Defense Information Sysmtems Agency) STIG (Security Technical Implementation Guide).
• Support compliance DoD SRG (Security Requirements Guide) and NIST (National Institute of Standards and Technology) SP 800-53 (Special Publication 800-53) security controls.

Responsibilities

• Maintain administrative privileges for Microsoft Active Directory (AD) and Domain Controllers (DC) to manage user accounts, organize the network, oversee Identity and Access Management (IDAM) services, and execute Assured Compliance Assessment Solution (ACAS) scans.
• Provide continuous oversight of Mission Owner (MO) governance and compliance within the cloud by monitoring Splunk reports.
• Coordinate with the customer and Mission Owners to fulfill requirements for tracking, alerting, troubleshooting, and reporting Internet Protocol (IP) addresses via the SolarWinds IP Address Manager (IPAM).
• Assist in the management of the Online Certificate Status Protocol (OCSP) to authenticate credentials with Defense Information Systems Agency (DISA) servers.
• Manage the functional requirements, processes, and workflows.
• Administer Secure Cloud Computing Architecture (SCCA) services, including Microsoft Defender for Cloud, Microsoft Defender XDR (Extended Detection and Response), Microsoft Defender for Endpoints (MDE), Microsoft Defender for Identity (MDI), the Enterprise Security System (ESS), and Tenable ACAS scans.
• Deliver Application Incident Response including: Routine Maintenance/Scanning: Ongoing sustainment during Pacific Standard Time (PST) business hours. Patching/Break-fixes: Resolving non-critical disruptions during PST business hours. Emergency Maintenance: Mitigating active threats during PST business hours.