Overview
Skills
Job Details
Purpose:
The purpose is to implement security hardening recommendations that came out of various audits, reviews and internal findings or recommendations.
Project Goals:
The primary goal is to assist with support, maintenance, and security hardening . The security hardening is needed to better support the Microsoft Active Directory, and Certificate Authority. The resource(s) may also assist with support, upgrades, and enhancements of these services and related services and processes that provide ancillary support or dependencies to these services.
Responsibilities:
- Implement security hardening for enterprise Active Directory and Certificate Authority systems based on audit findings and internal recommendations.
- Provide ongoing support, maintenance, upgrades, and enhancements for directory services and certificate management systems.
- Manage user and group accounts including creation, deletion, membership management, and password resets.
- Diagnose and resolve issues related to certificate enrollment and issuance.
- Design or re-design new and existing IT architectures with a focus on modern security and scalability standards.
- Monitor and respond to communications from internal stakeholders using approved communication channels.
- Attend meetings and follow established IT protocols and processes, documenting progress and updates as needed.
- Resolve service tickets using designated IT service management tools, ensuring timely responses and resolutions.
- Support and maintain related infrastructure services including enterprise DNS, DHCP, LDAP, Kerberos, and network configurations.
- Be available for after-hours support in critical situations, with prior approval.
- Ensure all work complies with organizational security, confidentiality, and data handling policies.
Requirements:
- 7+ years' experience in maintaining AD
- 5+ years' experience in maintaining CA
- 5+ years' experience in AD System Administration in multi-domain, multi-forest design and design and setup for CA
- 5+ years' experience in Windows Server and related Windows systems and LDAP and Kerberos
- 2+ years' experience in Disaster Recovery of AD, IT security principles, and security hardening practices
- 2+ years' experience in designing and maintaining an enterprise DNS architecture
- Knowledge of DHCP, network routing, Exchange, switching, TCP/IP addressing design and troubleshooting
- Experience with VB and VBScript
- State of Missouri ITSD AD and State of Missouri CA experience preferred
| Skill | Years of Experience Required | Required/Desired | Candidate Years of Experience | Note |
| Maintaining Active Directory (AD) | 7+ | Required |
|
|
| Maintaining Certificate Authority (CA) | 5+ | Required |
|
|
| AD System Administration (multi-domain, multi-forest) & CA design/setup | 5+ | Required |
|
|
| Windows Server, LDAP, and Kerberos | 5+ | Required |
|
|
| Disaster Recovery of AD, IT security principles, security hardening practices | 2+ | Required |
|
|
| Designing and maintaining enterprise DNS architecture | 2+ | Required |
|
|
| DHCP, network routing, Exchange, switching, TCP/IP addressing design and troubleshooting |
| Required |
|
|
| VB and VBScript |
| Required |
|
|
| State of Missouri ITSD AD and State of Missouri CA experience |
| Desired |
|
|