Sr. System Administrator - Windows

SMS is searching for qualified candidates for the position of a Senior Windows Systems Administrator supporting the AFINC II 26th Network Operations Squadron (26NOS).  We are seeking an individual for IT Cyberspace senior level with a strong cybersecurity server knowledge to work in a System Administrator work role. If you are seeking a dynamic place to work, please review the list of responsibilities and qualifications. SMS is seeking a Virtualization Engineer (VMWare) to support all aspects of Air Force Intranet Control Support (AFINC) enterprise operations, to include technical planning, design, development, integration, assessment, and requirements analysis, as well as future capability needs (near and long-term) to drive the design and maintenance an IT Enterprise. If you don’t meet all the qualifications, a candidate may still be considered depending on your level of experience.

SMS has been serving the advanced information technology needs of the federal government since 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers’ missions for more than 40 years. SMS is headquartered in McLean, Virginia, with offices and on-site operations at customer locations throughout the United States. For additional information on SMS, visit www.sms.com.

Submit your resume today!

Duties & Responsibilities:

• Conduct administration of Microsoft Windows platform servers and client workstations operating systems to include file system implementations, configuration management, security/software patches, updates, upgrades, command-line tools, and mitigation of vulnerabilities
• Provide operations support, implementation, and services for Microsoft Active Directory (AD) and Windows-based systems across the enterprise, including directory and identity management
• Highly skilled in OS administration, account maintenance, data backups, system performance, install and configure new hardware/software, using virtual machines, system/server maintenance, planning, and components upgrades (appliances, systems networking)
• Establish equipment requirements, tracking hardware and software, and staying current with platform, application security, & industry developments for Windows systems
• Monitor, identify, investigate, troubleshoot & scope network, hardware, software or security issues to supply recommendations for improvement or resolve problems based on documented solutions
• Deploy and maintain AD domain services and infrastructure (Domain Controller Lifecycle); Maintain Forest and Domain Trusts and set up cross-forest security and authenticationExperience within DoD environment or enterprise data center desired
• Conduct administration of Microsoft Windows Server to include configuration management, security updates, patching, software upgrades and mitigation of vulnerabilities
• Effective and timely communication with users both in and outside 26NOS is required, including understanding needs and operational strategies to meet requests
• Collaborating with the team on future direction and opportunities for new technology
• Establishing equipment requirements, tracking hardware and software, and staying current with platform, application, & industry developments for Windows systems
• Monitor, identify, investigate, troubleshoot & scope network, hardware, software or security issues to provide recommendations for improvement or resolve problems based on documented solutions
• Assist in deploying and supporting application, web or database servers in a virtual environment
• Provide a periodic report of system status to include uptime, incident and problems, open issues. Able to audit, remediate, maintain, collect and document security artifacts related to DISA Security Technical Implementation Guide (STIG) checklist documentation on supported systems utilizing technical procedures, best practices, hardening guidance, vendor manuals, and user guides
• Ability or experience in evaluating scan report data from ACAS Tenable.SC or Tenable Nessus Scanners; participate in the review and response phases of the Vulnerability Management (VM) life cycle
• Aptitude to support provisional installation, configuration, operation and maintenance of server systems hardware (Dell PowerEdge, HPe ProLiant, etc.), and utilize related infrastructure devices such as KVMs, out-of-band management (OOBM) tools like integrated lights-out (ILO), iLO Amplifier, integrated Dell Remote Access Controller (iDRAC) or Open Managed Enterprise (OME) appliances
• Utilize and/or implement technical solutions based on defined mission scope and using approved software tools such as PuTTY, SecureCRT, Remote Desktop Protocol (RDP), NotePad++, etc.
• Aptitude to test/interact with new software technologies in environment with 3^rd party monitoring tools to track overall health and availability of apps: Splunk Enterprise, SolarWinds Orion platform, McAfee Endpoint Security Systems (ESS), Microsoft Endpoint Configuration Manager (MECM), WSUS, ForeScout, NAGIOS, Veritas NetBackup, etc.
• Ensures networks receive periodic updates from AFCYBER-released software patches, updates, and upgrades via Time Compliance Technical Orders (TCTO), Time Compliance Network Orders (TCNO), Maintenance Tasking Order (MTO) and Notices to Airman (NOTAMs)
• Assist AF Cyber personnel with Information Assurance Vulnerability Management (IAVM) programs, cybersecurity toolsets, and Operation Order (OPORD)/Fragmentary Order (FRAGO) support
• Candidate will report to the 26^th NOS Systems Administration (SA) team leadership

Qualifications/Requirements:

• Must have a minimum of 7+ years of experience with WinOS technologies supporting Windows servers and/or desktops
• Expert knowledge of AD, ADFS, Domain Forest, PKI Windows Server 2012 R2, 2016, and 2019
• Experience within DoD environment or enterprise management data center required
• Provide technical leadership with Windows Operating System installs, configs and security practices
• Team player with proven leadership, communication, organizational, and strong interpersonal skills. The role requires significant interaction with many different teams and WinOS oversight
• Advanced experience with Active Directory creation and maintenance of user accounts, computer OU objects, groups, security, group policies (GPOs) including capability, permissions and limit access
• Leads by example and collaborates with others to deliver the best solution for the given constraints
• Support day-to-day technical communication systems, alerts and incident tickets queue in support of operations; Open/track change requests and interact with external customers or vendors
• Knowledge of network protocols and technologies: 802.1x, AAA, DHCP, DNS, ICMP, LDAPS, NetFlow, Polling, SCP, SMTP, SNMP, Syslog, TCP/IP, TLS, VLANs, WinRM, WMI
• Responsible for shared 24x7 coverage of the Windows physical and/or virtual support
• Exposure to SCCM/WSUS/MECM patch/software endpoint management technologies
• Knowledge about virtualized environments such as VMware vSphere’s vCenter Server Appliance (vCSA), ESXi hosts, virtual machines (VMs), VMTools and VMware hardware version
• Familiarity with networking security, desktops/laptops, middleware, client/server software
• Ability to utilize Office products (Word Excel, OneNote, Teams, OneDrive, PowerPoint, etc), server operating systems, virtualization, managing data, applications, websites, APIs, or database supporting a multi-site, multi-domain Windows forest
• Capability to work both independently and as an effective team member, planning and organizing work, and flexibility to cope with a changing environment and short deadlines

Education/Certification(s):

• Associate degree is preferred or 7+ years’ relevant experience in Information Technology within Windows system administration is acceptable.
• Must meet both 8140 and 8750 certification requirements as outlined by customer.
  • Requires a DoD 8570.01-M Information Assurance Technical (IAT) Level II certification:
    • CompTIA Security+ CE (Continuing Education) or CompTIA Cybersecurity Analyst (CySA+) CE
    • GIAC Security Essentials Certification (GSEC) or Global Industrial Cyber Security Professional (GICSP)
    • (ISC)² Systems Security Certified Practitioner (SSCP)
  • Requires at least one or more DoDM 8140.03 Computing Environment/Operating System (CE/OS) Defense Cyberspace Workforce Certification (DCWF) requirement(s) (or acquire within 120 days):
    • Microsoft based certification (current):
      • Microsoft Certified: Windows Server Hybrid Administrator Associate 
      • Microsoft 365 Certified: Security AdministratorAssociate
      • Microsoft Certified: Azure Security EngineerAssociate
      • Microsoft 365 Certified: Modern Desktop AdministratorAssociate
      • Microsoft Certified: Security, Compliance, and Identity Fundamentals
      • Microsoft Certified: Security Operations Analyst Associate
      • Microsoft Certified: Identity and Access Administrator Associate

CLEARANCE:

• Active DoD Secret clearance required

SMS is a dynamic systems integrator established in 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers’ missions for more than 47 years. Our ability to hire and retain quality people in a rapidly evolving IT market is proven through our employee retention rate averaging over 3 years. At SMS, we place a high value on quality of service, customer satisfaction, and best-of-breed policies and practices, resulting in CMMI Level 3 certification and ISO registrations including 9001:2015, 20000-1:2018, and ISO/IEC 27001:2013. SMS is headquartered in McLean, Virginia, with offices and on-site operations at customer locations throughout the United States. 

SMS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.