Windows System Administrator with Security Clearance
Apply NowCompany: TEKsystems c/o Allegis Group
Location: Montgomery, AL 36116
Description:
Top Skills' Details
Backup and recovery experience
Familiarity with Active Directory creation and maintenance of user accounts, computer OU objects, groups, security, group policies (GPOs) including limitations of capability, permissions and access
Responsible for shared 24x7 coverage of the Windows physical and/or virtual support
Experience within DoD environment or enterprise data center desired
Support day-to-day technical communication systems, alerts and incident tickets queue in support of operations; Open/track change requests and interact with external customers or vendors
Experience with supporting Windows desktops and/or servers
Must have a minimum of 2+ years of experience with WinOS technologies
Prefer a minimum of 1-3 years of experience with Windows server environment
Knowledge of network protocols and technologies: 802.1x, AAA, DHCP, DNS, ICMP, LDAPS, NetFlow, Polling, SCP, SMTP, SNMP, Syslog, TCP/IP, VLANs, WinRM, WMI
Exposure to SCCM/WSUS/MECM patch/software endpoint management technologies
Knowledge about virtualized environments such as VMware vSpheres vCenter Server Appliance (vCSA), ESXi hosts, virtual machines (VMs), VMTools and VMware hardware version
Familiarity with networking security, desktops/laptops, middleware, client/server software
Ability to utilize Office products (Word Excel, OneNote, Teams, OneDrive, PowerPoint, etc), server operating systems, virtualization, managing data, applications, websites, APIs, or database supporting a multi-site, multi-domain Windows forest
Capability to work both independently and as an effective team member, planning and organizing work, and have the flexibility to cope with a changing environment and short deadlines
Secondary Skills - Nice to Haves
Job Description
Conduct administration of Microsoft Windows workstations and servers to include configuration management, security updates, patching, software upgrades and mitigation of vulnerabilities
Effective and timely communication with users both in and outside 26NOS is required, including analyzing issues, understanding needs and operational strategies to solve requests
Assist in tier one or tier two capacity deploying and supporting software applications, imaging desktops/laptops, web access, and physical or virtual servers in an enterprise environment
Establishing equipment requirements, tracking hardware and software, and staying current with platform, application, & industry developments for Windows systems
Monitor, identify, investigate, troubleshoot & scope network, hardware, software or security issues to supply recommendations for improvement or resolve problems based on documented solutions
Provide a periodic report of system status to include uptime, incident and problems, open issues
Able to audit, remediate, maintain, collect and document security artifacts related to DISA Security Requirements or Technical Implementation Guide (SRG/STIG) checklist documentation on supported systems utilizing technical procedures, best practices, or vendor hardening guidance
Ability or experience in evaluating scan report data from ACAS Tenable.SC or Tenable Nessus Scanners; participate in the review and response phases of the Vulnerability Management (VM) life cycle
Aptitude to support provisional installation, configuration, operation and maintenance of server systems hardware (Dell PowerEdge, HPe ProLiant, etc.), and utilize related infrastructure devices such as KVMs, out-of-band management (OOBM) tools like integrated lights-out (ILO), iLO Amplifier, integrated Dell Remote Access Controller (iDRAC) or Open Managed Enterprise (OME) appliances
Utilize and/or implement technical solutions based on defined mission scope and using approved software tools such as PuTTY, SecureCRT, Remote Desktop Protocol (RDP), NotePad++, etc.
Aptitude to test/interact with new software technologies in environment with 3rd party monitoring tools to track overall health and availability of apps: Splunk Enterprise, SolarWinds Orion platform, Trellix/McAfee Endpoint Security Solutions (ESS) for host IDS/IPS/anti-virus, Microsoft Endpoint Configuration Manager (MECM), WSUS, ForeScout, NAGIOS, Veritas NetBackup, etc.
Collaborating with team members on future direction and opportunities for new technology usage
Ensures networks receive periodic updates from AFCYBER-released software patches, updates, and upgrades via Time Compliance Technical Orders (TCTO), Time Compliance Network Orders (TCNO), Maintenance Tasking Order (MTO) and Notices to Airman (NOTAMs)
Assist AF Cyber personnel with Information Assurance Vulnerability Management (IAVM) programs, cybersecurity toolsets, and Operation Order (OPORD)/Fragmentary Order (FRAGO) support
Backup and recovery experience
Familiarity with Active Directory creation and maintenance of user accounts, computer OU objects, groups, security, group policies (GPOs) including limitations of capability, permissions and access
Responsible for shared 24x7 coverage of the Windows physical and/or virtual support
Experience within DoD environment or enterprise data center desired
Support day-to-day technical communication systems, alerts and incident tickets queue in support of operations; Open/track change requests and interact with external customers or vendors
Experience with supporting Windows desktops and/or servers
Must have a minimum of 2+ years of experience with WinOS technologies
Prefer a minimum of 1-3 years of experience with Windows server environment
Knowledge of network protocols and technologies: 802.1x, AAA, DHCP, DNS, ICMP, LDAPS, NetFlow, Polling, SCP, SMTP, SNMP, Syslog, TCP/IP, VLANs, WinRM, WMI
Exposure to SCCM/WSUS/MECM patch/software endpoint management technologies
Knowledge about virtualized environments such as VMware vSpheres vCenter Server Appliance (vCSA), ESXi hosts, virtual machines (VMs), VMTools and VMware hardware version
Familiarity with networking security, desktops/laptops, middleware, client/server software
Ability to utilize Office products (Word Excel, OneNote, Teams, OneDrive, PowerPoint, etc), server operating systems, virtualization, managing data, applications, websites, APIs, or database supporting a multi-site, multi-domain Windows forest
Capability to work both independently and as an effective team member, planning and organizing work, and have the flexibility to cope with a changing environment and short deadlines
Secondary Skills - Nice to Haves
Job Description
Conduct administration of Microsoft Windows workstations and servers to include configuration management, security updates, patching, software upgrades and mitigation of vulnerabilities
Effective and timely communication with users both in and outside 26NOS is required, including analyzing issues, understanding needs and operational strategies to solve requests
Assist in tier one or tier two capacity deploying and supporting software applications, imaging desktops/laptops, web access, and physical or virtual servers in an enterprise environment
Establishing equipment requirements, tracking hardware and software, and staying current with platform, application, & industry developments for Windows systems
Monitor, identify, investigate, troubleshoot & scope network, hardware, software or security issues to supply recommendations for improvement or resolve problems based on documented solutions
Provide a periodic report of system status to include uptime, incident and problems, open issues
Able to audit, remediate, maintain, collect and document security artifacts related to DISA Security Requirements or Technical Implementation Guide (SRG/STIG) checklist documentation on supported systems utilizing technical procedures, best practices, or vendor hardening guidance
Ability or experience in evaluating scan report data from ACAS Tenable.SC or Tenable Nessus Scanners; participate in the review and response phases of the Vulnerability Management (VM) life cycle
Aptitude to support provisional installation, configuration, operation and maintenance of server systems hardware (Dell PowerEdge, HPe ProLiant, etc.), and utilize related infrastructure devices such as KVMs, out-of-band management (OOBM) tools like integrated lights-out (ILO), iLO Amplifier, integrated Dell Remote Access Controller (iDRAC) or Open Managed Enterprise (OME) appliances
Utilize and/or implement technical solutions based on defined mission scope and using approved software tools such as PuTTY, SecureCRT, Remote Desktop Protocol (RDP), NotePad++, etc.
Aptitude to test/interact with new software technologies in environment with 3rd party monitoring tools to track overall health and availability of apps: Splunk Enterprise, SolarWinds Orion platform, Trellix/McAfee Endpoint Security Solutions (ESS) for host IDS/IPS/anti-virus, Microsoft Endpoint Configuration Manager (MECM), WSUS, ForeScout, NAGIOS, Veritas NetBackup, etc.
Collaborating with team members on future direction and opportunities for new technology usage
Ensures networks receive periodic updates from AFCYBER-released software patches, updates, and upgrades via Time Compliance Technical Orders (TCTO), Time Compliance Network Orders (TCNO), Maintenance Tasking Order (MTO) and Notices to Airman (NOTAMs)
Assist AF Cyber personnel with Information Assurance Vulnerability Management (IAVM) programs, cybersecurity toolsets, and Operation Order (OPORD)/Fragmentary Order (FRAGO) support