Job Description
Job Description
Duties and Responsibilities
-
Strong understanding of Active Directory attributes, LDAP queries, and PowerShell scripting to modify AD attributes; Group Policy analysis, GPO configuration, item-level targeting, workstation and browser configuration, and familiarity with VMView and other applications integrated with Active Directory
-
Strong knowledge of native permissions granted to Microsoft built-in groups for Active Directory administrative functions, permissions assigned during AD object creation, and permissions granted through GPOs and/or local policies
-
Thorough functional understanding and configuration of Active Directory server roles, including Certificate Authorities (CA), IIS, File/Print Services, and DNS
-
Working knowledge of GPOs, Active Directory Sites, replication topology, and native AD troubleshooting tools
-
Plan, design, implement, and support directory synchronization systems for Microsoft Active Directory and Windows-based systems, including directory and identity management solutions
-
Implement business-driven changes, configure Group Policies, and integrate AD management tools and services
-
Perform analysis, design, and implementation of Active Directory and Identity Management solutions
-
Independently manage and serve as engineering lead for large-scale Active Directory and Identity Management projects
-
Analyze current Active Directory environments to identify technical and operational challenges and develop improvement solutions
-
Perform analysis, design, capacity planning, and implementation of Active Directory security
-
Provide regulatory and compliance data from Active Directory or supporting systems upon request
-
Oversee and maintain the security and reliability of the corporate forest, ensuring the integrity of the Active Directory schema
-
Serve as the primary coordinator for Active Directory migration and integration activities
-
Interact with customers, service managers, and operational support teams to design, test, and deploy security and automation solutions
-
Lead evaluation of technical project requirements, including infrastructure impact, equipment redundancy, and capacity requirements
-
Demonstrate exceptionally strong communication and articulation skills for daily interaction with system administrators
-
Create training manuals and presentation decks using Microsoft Office products
-
Read and interpret product documentation to conceptualize and implement solutions; build Domain Controllers and member servers to support enterprise solutions
-
Develop and maintain repeatable process documentation governing installation, configuration, administration, and maintenance of identity and authorization processes
-
Troubleshoot and resolve all issues arising within messaging and directory-dependent production environments
Education
-
Bachelor’s degree in Computer Science, Information Technology, or related field (Required)
-
MCSE certification (Preferred / Highly Desired)
-
ITIL v4 certification (Preferred / Highly Desired)
Qualifications
-
10 or more years of hands-on experience with Microsoft Active Directory (Required)
-
Experience developing technical engineering solutions that solve business problems and improve processes
-
Experience developing complex automation scripts using VBScript and/or PowerShell (Required)
-
Experience integrating applications with Active Directory using LDAP and Kerberos for authentication and authorization (Required)
LOCATION:
Must be in located the Washington, DC Metro Area and able to work onsite in the District of Columbia Government location 3-4 days a week.