Empower your career with Trace3 Gov, where passion meets innovation and inclusion! Embrace the future of IT while being a part of Trace3 Gov's pioneering tech community.
Trace3 Gov isn’t just about technology—it’s about people. We thrive on the energy, talent, and dedication of our workforce. From our culture to professional development, we prioritize our team. We live by our core values every day and hope you will as well! Come join a Top Workplaces organization!
This individual is responsible for deployment and maintenance of all directory service types activities, such as active directory domain services/controllers, certificate authorities services, policy tracking/creation, and account management functions in the enterprise. Must be a detail oriented individual that is able to track the impact of events/actions on the underlying infrastructure being managed, such as replication schedules and group policies.
Experience Required
- 4+ years experience with Active Directory technologies in an enterprise level system
- Comfortable with creating and modifying group policies for forest level application
- Management of Active directory remote site replication policies and health monitoring
- Comfortable with using network/system health tracking solutions, such as SolarWinds for monitoring system health for both virtual infrastructure as well as hardware health
- Experience with writing standard operating procedures (SOP) documentation
- Top Secret Clearance with an eligibility for SCI and SAP access
Technical Skills Required
- Deployment and maintenance of all active directory domain services/controllers
- This includes monitoring health and status of all sites and services in the enterprise
- Maintenance of certificate authority (CA) services, including issuing all SSL certificates and building out new CA servers in the enterprise
- Tracking all issued SSL certs for all enterprise enclaves and working with existing administrators to ensure no certificates expiration, potentially impacting services to C2BMC-G user base
- Creating and maintenance of system policies, such as Windows group policies and tracking any potential issues as they arise on the system
- Maintenance of all account matrices, including all applicable permissions cross overs between enclaves when/if needed
- Work continuously with cyber team to ensure all RBAC controls are compliant with current policies for restriction access between enclaves and systems in enterprise for each applicable user/team
- Assist cyber team with monitoring all directory services for out of the ordinary logins or accounts behavior metrics to ensure safety of data integrity of C2BMC-G system enterprise
- Work with team to ensure proper distributed authentication services are configured property to ensure non-repudiation to all available sources
- This can includes assisting with configuration of LDAP services to network/software solution, to ensure RBAC access to user base
- Examples of LDAP/LDAPS connected endpoints configuration could be products like, HPE iLO interfaces, Gitlab, Cisco ISE, Tanium, MatterMost, Raritan KVM, etc.
- Desired:
- Thorough understanding and Active Directory and its replication structure when used in a distributed forest, separated through the use of WAN links
- Experience with an on premise multi domain environment using Role based administrative controls (RBAC) for least privilege
- Experience with DISA STIG compliance remediation using distributed group policy and SCAP compliance scanners
- Ability to integrate automation technologies into daily Active Directory use is a plus
Education Required
- Career level typically with an advanced degree and 3+ years experience or bachelors with 5+ years experience or equivalent;
- Wide application of principles, theories, and concepts in their field and provides solutions to a wide range of difficult problems with imaginative and thorough solutions;
- Works under general direction, and results are reviewed upon completion for adequacy in meeting objectives;
- Failure to achieve results normally results in serious program delays and considerable expenditure of resources;
- Frequent internal and external customer contacts and represents the organization in providing solutions to difficult technical issues associated with specific projects
- Top Secret Clearance Required to Start
Benefits: Benefit offerings include medical, dental, vision, life insurance, disability, flexible spending accounts, paid holidays, flexible PTO program, 401k program. Come join a Top Places to Work organization!
U.S. Citizenship is required for all positions at Trace3 Gov, due to security clearance and government/federal contracts held by Trace3 Gov.
EEO STATEMENT
Trace3 Gov is an equal opportunity employer. In accordance with anti-discrimination law, it is the purpose of this policy to effectuate these principles and mandates. Trace3 Gov prohibits discrimination and harassment of any type and affords equal employment opportunities to employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity or expression, pregnancy, age, national origin, disability status, genetic information, protected veteran status, or any other characteristic protected by law.
