Today
Secret
Unspecified
Unspecified
IT - Security
Colorado Springs, CO (On-Site/Office)
About the Job
The Identity and Access Management Administrator will support the C2BMC program and will be responsible for deployment and maintenance of all directory service type activities.
Location
Colorado Springs, CO (Schriever SFB)
The Work You'll Do
This individual is responsible for deployment and maintenance of all directory service type activities, such as active directory domain services/controllers, certificate authorities services, policy tracking/creation, and account management functions in the enterprise. Must be a detail-oriented individual that is able to track the impact of events/actions on the underlying infrastructure being managed, such as replication schedules and group policies.
What You'll Bring
Preferred
Salary Range: $100,000 - $148,000
Our Approach
At SecureStrux, we are committed to core values that guide the way we work with one another and our clients. As a team member, you will Create Team Synergy, Drive Continuous Innovation, Deliver with Integrity, and have the Freedom to Own it. Our thriving company culture supports our employees as they seek to grow with us!
What We Offer
Between our virtual environment where you can evaluate recent technologies and enhance your skills, and a generous annual professional development stipend, you will join a team that enjoys working on leading-edge technologies for world-class clients. We offer a robust total compensation package that includes comprehensive health benefits to support you and your family, flexible time off, continuing education allowance, a donation allowance for charitable causes, and a matched 401k.
Employment Types: Full-time
Work Arrangements: On-site
Locations: Colorado
The Identity and Access Management Administrator will support the C2BMC program and will be responsible for deployment and maintenance of all directory service type activities.
Location
Colorado Springs, CO (Schriever SFB)
The Work You'll Do
This individual is responsible for deployment and maintenance of all directory service type activities, such as active directory domain services/controllers, certificate authorities services, policy tracking/creation, and account management functions in the enterprise. Must be a detail-oriented individual that is able to track the impact of events/actions on the underlying infrastructure being managed, such as replication schedules and group policies.
What You'll Bring
- Bachelor's degree with 5+ years' experience, or Masters' degree with 3+ years' experience, or equivalent.
- Active Top-Secret clearance required to start, with an eligibility for SCI and SAP access.
- 4+ years' experience with Active Directory technologies in an enterprise level system.
- Comfortable with creating and modifying group policies for forest level application.
- Management of Active directory remote site replication policies and health monitoring.
- Comfortable with using network/system health tracking solutions, such as SolarWinds for monitoring system health for both virtual infrastructure as well as hardware health.
- Experience with writing standard operating procedures (SOP) documentation.
- Deployment and maintenance of all active directory domain services/controllers. This includes monitoring health and status of all sites and services in the enterprise.
- Maintenance of certificate authority (CA) services, including issuing all SSL certificates and building out new CA servers in the enterprise. Tracking all issued SSL certs for all enterprise enclaves and working with existing administrators to ensure no certificates expiration, potentially impacting services to C2BMC-G user base.
- Creating and maintenance of system policies, such as Windows group policies and tracking any potential issues as they arise on the system. Maintenance of all account matrices, including all applicable permissions cross overs between enclaves when/if needed.
- Work continuously with cyber team to ensure all RBAC controls are compliant with current policies for restriction access between enclaves and systems in enterprise for each applicable user/team.
- Assist cyber team with monitoring all directory services for out of the ordinary logins or accounts behavior metrics to ensure safety of data integrity of C2BMC-G system enterprise.
- Work with team to ensure proper distributed authentication services are configured property to ensure non-repudiation to all available sources. This can includes assisting with configuration of LDAP services to network/software solution, to ensure RBAC access to user base. Examples of LDAP/LDAPS connected endpoints configuration could be products like, HPE iLO interfaces, Gitlab, Cisco ISE, Tanium, MatterMost, Raritan KVM, etc.
Preferred
- Thorough understanding of Active Directory and its replication structure when used in a distributed forest, separated through the use of WAN links.
- Experience with an on-premise multi domain environment using Role based administrative controls (RBAC) for least privilege.
- Experience with DISA STIG compliance remediation using distributed group policy and SCAP compliance scanners.
- Ability to integrate automation technologies into daily Active Directory use is a plus.
Salary Range: $100,000 - $148,000
Our Approach
At SecureStrux, we are committed to core values that guide the way we work with one another and our clients. As a team member, you will Create Team Synergy, Drive Continuous Innovation, Deliver with Integrity, and have the Freedom to Own it. Our thriving company culture supports our employees as they seek to grow with us!
What We Offer
Between our virtual environment where you can evaluate recent technologies and enhance your skills, and a generous annual professional development stipend, you will join a team that enjoys working on leading-edge technologies for world-class clients. We offer a robust total compensation package that includes comprehensive health benefits to support you and your family, flexible time off, continuing education allowance, a donation allowance for charitable causes, and a matched 401k.
Employment Types: Full-time
Work Arrangements: On-site
Locations: Colorado
group id: 91082047
