Spinvi Active Directory/PKI Mid-Senior Engineer in Fort Sam Houston, Texas
Candidates will join an existing team of highly skilled Active Directory and Public Key Infrastructure Engineers responsible for engineering Active Directory and its related technologies for the Defense Health Agency. Candidates need to have a strong understanding of Active Directory, Certificate Services and related technologies as the DHA enterprise has an expansive and complex infrastructure and identity architecture. This is an excellent opportunity for candidates to continue to expand their Windows Systems and Identity knowledge in a very large enterprise.
Strong working knowledge of the latest versions of Windows OS and Active Directory.
Experience with multi-factor authentication with Windows clients.
Able to manage a complex active directory tree which includes: Multiple domains, Multiple trust relationships/types, Group policies, OUs, Sites, smart card authentication, Firewalls, and network Enclaves
Active directory services experience such as DoD PKI, certificates, replication, Lightweight Directory Services, ADAM, Active Directory Certificate Services.
Identity Federation, SAML, OAuth2, ADFS and Azure AD.
Tools such as ADSIEdit, LDP, PowerShell, LDIFDE, repadmin, ADUC, ADSS, ADDT, ADAC.
Ability or familiarity with task automation using scripts with Powershell, ADSI, Python, WSUS, SCCM, etc.
Able to independently write documentation utilizing enterprise standardized templates including: Installation and Configuration Guides, white papers, design and engineering test plans, Information Assurance/Cyber documentation to support accreditation requirements, systems scans and risk assessment documentation.
Ability to write other non-templated documentation as needed to support tasks like: process and procedures documents for operational support, lessons learned, diagrams, systems administration guidelines, systems set-up documentation, hardware integration test plans and results.
Ability to interpret security documentation, procedures and guidelines; such as the DISA STIG, DoD guidance then incorporate necessary provisions into build scripts, Group Policy Objects, Installation and Configuration design documents and lab builds enforcing and solidifying standards, security procedures, and controls ensuring integrity of the Identity Management Framework of the lab and enterprise.
Key Microsoft Active Directory (AD) concepts such as replication, Sites and Services, DNS, trusts, Active Directory objects and attributes, LDAP, Global Catalog, Group Policy, Group Policy Objects, permissions, scoping, and link order.
Working knowledge of IT infrastructure components, including but not limited to networking, load balancing, firewall rules, SSL, system management / monitoring, hardware components (storage, CPU, etc.)
Role based access control and attribute based access control concepts and practices.
Networking fundamentals, multi-factor authentication, cloud computing/as-a-service concepts, and authentication vs. authorization.
Bachelor's degree in Information Systems or relevant work experience
2-5 years dedicated Enterprise Active Directory Engineering experience
8+ years of Enterprise Active Directory Experience
DoD 8570 Compliance (Security+, CASP, or CISSP, Microsoft Certifications)
Active Secret Clearance required
Long Term Disability
Basic Life Insurance
Basic Accidental Death & Dismemberment Insurance
Direct Payroll Deposit
Short Term Disability
Additional (Voluntary) Life Insurance
Additional (Voluntary) AD&D Insurance
Vision Care Plan
Flexible Spending Account Plan
AFLAC Supplementary Insurances
Core4ce is an Equal Opportunity Employer. Core4ce does not discriminate on the basis of race, religion, color, sex, gender identity, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status or any other basis covered by appropriate law. All employment is decided on the basis of qualifications, merit, and business need.
Core4ce provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Core4ce complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Core4ce expressly prohibits any form of workplace harassment based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of Core4ce’s employees to perform their job duties may result in discipline up to and including discharge.