The #1 Site for IT and Engineering Jobs - search all IT and Engineering  jobs.

Active Directory Administrator

Job Description

TCI has an immediate need for an Active Directory Administrator in Boston, MA.  This is a contract opportunity with probable extensions and possible hire.  In addition to competitive, market-rate based pay, TCI provides all our Consultants with Comprehensive Medical/Dental Insurance, 401k, Life Insurance and Long-Term Disability benefits.  

Please note that this position requires a DoD Secret Security Clearance.

 SUMMARY

Our Military client is seeking an Active Directory administrator to perform duties of a SME level for the integration of Active Directory infrastructure.

RESPONSIBILITIES

  • Implement server requirements, client configuration, configure DNS for Direct Access, and configure certificates for Direct Access.
  • Create and configure DNS Resource Records (RR), including A, AAAA, PTR, SOA, NS, SRV, CNAME, and MX records; configure zone scavenging; configure record options, including Time to Live (TTL) and weight; configure round robin; configure secure dynamic updates.
  • Configure primary and secondary zones, configure stub zones, configure conditional forwards, configure zone and conditional forward storage in Active Directory, configure zone delegation, configure zone transfer settings, and configure notify settings.
  • Configure Active Directory integration of primary zones, configure forwarders, configure Root Hints, manage DNS cache, create A and PTR resource records.
  • Create and configure scopes, configure a DHCP reservation, configure DHCP options, configure client and server for PXE boot, configure DHCP relay agent, authorize DHCP server.
  • Configure domain and local user password policy settings, configure and apply Password Settings Objects (PSOs), delegate password settings management, configure account lockout policy settings, configure Kerberos policy settings.
  • Back up Active Directory and SYSVOL, manage Active Directory offline, optimize an Active Directory database, clean up metadata, configure Active Directory snapshots, perform object- and container-level recovery, perform Active Directory restore, configure and restore objects by using the Active Directory Recycle Bin.
  • Add or remove a domain controller from a domain, upgrade a domain controller, install Active Directory Domain Services (AD DS) on a Server Core installation, install a domain controller from Install from Media (IFM), resolve DNS SRV record registration issues, configure a global catalog server.
  • Automate the creation of Active Directory accounts; create, copy, configure, and delete users and computers; configure templates; perform bulk Active Directory operations; configure user rights; offline domain join; manage inactive and disabled accounts.
  • Configure group nesting; convert groups, including security, distribution, universal, domain local, and domain global; manage group membership using Group Policy; enumerate group membership; delegate the creation and management of Active Directory objects; manage default Active Directory containers; create, copy, configure, and delete groups and OUs.
  • Create and configure Service Accounts, create and configure Group Managed Service Accounts, configure Kerberos delegation, manage Service Principal Names (SPNs), configure virtual accounts.
  • Transfer and seize operations master roles, install and configure a read-only domain controller (RODC), configure domain controller cloning.
  • Responsible for Contract Monthly Deliverables directly related to contract.
  • Implementation and configuration of Security Technical Implementation Guidelines (STIGS) and maintenance of STIG revision history related to Cybersecurity.
  • Remediation of patch vulnerabilities using tools such as ACAS Scans.
  • Experience using cybersecurity tools such as SCAP Scanning / InstallRoot for PKI implementation.

Job Requirements

  • Candidate should have a minimum of 8-15 years of experience designing, maintaining and managing enterprise scale Active Directory Domain Services (AD DS) deployments.
  • Candidate should have experience in configuration and troubleshooting of architecture areas such as ADFS, Direct Access, Certificate Services/ PKI Authentication, Terminal Server Farms, Optimal and OVD. Additionally, candidate should have Cloud sharing using Azure and Office 365 experience.
  • Experience configuring Active Role Servers (ARS)
  • Advanced level experience in creation of Powershell Scripting for tasks automation.
  • Must possess at minimum current Active Secret Clearance.
  • Must have a current CompTIA Security +CE with expiration date no less than 6 months.
  • Additional industry Certifications (Microsoft). Preferably MCSE or MCSA.
  • Have the ability to resolve TIER III level tickets (Master level) within a timely manner based on expertise within Active Directory.
  • Intermediate level experience managing a large-scale Enterprise environment with multiple Domains. 
  • Intermediate level experience troubleshooting server issues and diagnosing root cause of issue.
  • Must have in-depth experience in supporting at an Advanced Level:
  • Microsoft Active Directory infrastructure, including Hands-on experience administering Microsoft Active Directory.
  • 2008 R2/2012 R2 in a multi-site and multi-domain organization.
  • Microsoft WSUS infrastructure.
  • ADFS infrastructure.
  • DNS infrastructure.
  • AD Replication.
  • Must have in-depth knowledge of Group Policies to include WMI Filtering and understanding the importance of Precedence within them.
  • Expert level experience with RDS Technology and licensing.
  • Understanding of PKI Infrastructure to include DoD Certs and ADFS Infrastructure.
  • Intermediate level experience with PowerShell scripts with the ability to create and modify scripts as needed within environment.
  • Strong working knowledge of standards and protocols: TCP/IP, DNS, DHCP, WINS, SMTP, RPC, HTTPS; including knowledge of forest to forest trusts
  • Scripting expertise on Windows Server 2008 – 2012 as well as knowledge of IIS and networking concepts, VPN’ s, etc.
  • Must be willing to work on call and after hours to support Operations worldwide.
  • Maintain and understand systems, regulatory requirements, and security of hosting systems.
  • Ability to create and manage Group Policies including GPO precedence, enforcement and blocking.
  • OCSP infrastructure management and troubleshooting skills.
  • Active Directory Federation Services.
  • Smart card authentication management and troubleshooting skill.
  • Active Directory Certificate Services (ADCS).

Job Snapshot

Location US-MA-Boston
Employment Type Full-Time
Pay Type Year
Pay Rate N/A
Store Type IT & Technical
Apply

Company Overview

Technology Consulting, Inc

Technology Consulting, Inc. was formed in 1988 to provide information systems and consulting services to a variety of clients. In the years that have followed, a strong growth pattern has evolved, based largely on the professional quality of services and the results that our clients have received. TCI concentrates on IT staffing and project delivery solutions across all technology platforms (mainframe, midrange, client server, and internet based). We provide the services and expertise necessary to assist our clients with managing their technology investment. Our commitment to quality and customer satisfaction fueled our growth. Our staff of professionals offer you the expertise required for effective applications of technology. We combine leading edge knowledge of information systems software and hardware with specialized industry expertise to ensure practical, comprehensive solutions to your business needs. Learn More

Contact Information

US-MA-Boston
Snapshot
Technology Consulting, Inc
Company:
US-MA-Boston
Location:
Full-Time
Employment Type:
Year
Pay Type:
N/A
Pay Rate:
IT & Technical
Store Type:

Job Description

TCI has an immediate need for an Active Directory Administrator in Boston, MA.  This is a contract opportunity with probable extensions and possible hire.  In addition to competitive, market-rate based pay, TCI provides all our Consultants with Comprehensive Medical/Dental Insurance, 401k, Life Insurance and Long-Term Disability benefits.  

Please note that this position requires a DoD Secret Security Clearance.

 SUMMARY

Our Military client is seeking an Active Directory administrator to perform duties of a SME level for the integration of Active Directory infrastructure.

RESPONSIBILITIES

  • Implement server requirements, client configuration, configure DNS for Direct Access, and configure certificates for Direct Access.
  • Create and configure DNS Resource Records (RR), including A, AAAA, PTR, SOA, NS, SRV, CNAME, and MX records; configure zone scavenging; configure record options, including Time to Live (TTL) and weight; configure round robin; configure secure dynamic updates.
  • Configure primary and secondary zones, configure stub zones, configure conditional forwards, configure zone and conditional forward storage in Active Directory, configure zone delegation, configure zone transfer settings, and configure notify settings.
  • Configure Active Directory integration of primary zones, configure forwarders, configure Root Hints, manage DNS cache, create A and PTR resource records.
  • Create and configure scopes, configure a DHCP reservation, configure DHCP options, configure client and server for PXE boot, configure DHCP relay agent, authorize DHCP server.
  • Configure domain and local user password policy settings, configure and apply Password Settings Objects (PSOs), delegate password settings management, configure account lockout policy settings, configure Kerberos policy settings.
  • Back up Active Directory and SYSVOL, manage Active Directory offline, optimize an Active Directory database, clean up metadata, configure Active Directory snapshots, perform object- and container-level recovery, perform Active Directory restore, configure and restore objects by using the Active Directory Recycle Bin.
  • Add or remove a domain controller from a domain, upgrade a domain controller, install Active Directory Domain Services (AD DS) on a Server Core installation, install a domain controller from Install from Media (IFM), resolve DNS SRV record registration issues, configure a global catalog server.
  • Automate the creation of Active Directory accounts; create, copy, configure, and delete users and computers; configure templates; perform bulk Active Directory operations; configure user rights; offline domain join; manage inactive and disabled accounts.
  • Configure group nesting; convert groups, including security, distribution, universal, domain local, and domain global; manage group membership using Group Policy; enumerate group membership; delegate the creation and management of Active Directory objects; manage default Active Directory containers; create, copy, configure, and delete groups and OUs.
  • Create and configure Service Accounts, create and configure Group Managed Service Accounts, configure Kerberos delegation, manage Service Principal Names (SPNs), configure virtual accounts.
  • Transfer and seize operations master roles, install and configure a read-only domain controller (RODC), configure domain controller cloning.
  • Responsible for Contract Monthly Deliverables directly related to contract.
  • Implementation and configuration of Security Technical Implementation Guidelines (STIGS) and maintenance of STIG revision history related to Cybersecurity.
  • Remediation of patch vulnerabilities using tools such as ACAS Scans.
  • Experience using cybersecurity tools such as SCAP Scanning / InstallRoot for PKI implementation.

Job Requirements

  • Candidate should have a minimum of 8-15 years of experience designing, maintaining and managing enterprise scale Active Directory Domain Services (AD DS) deployments.
  • Candidate should have experience in configuration and troubleshooting of architecture areas such as ADFS, Direct Access, Certificate Services/ PKI Authentication, Terminal Server Farms, Optimal and OVD. Additionally, candidate should have Cloud sharing using Azure and Office 365 experience.
  • Experience configuring Active Role Servers (ARS)
  • Advanced level experience in creation of Powershell Scripting for tasks automation.
  • Must possess at minimum current Active Secret Clearance.
  • Must have a current CompTIA Security +CE with expiration date no less than 6 months.
  • Additional industry Certifications (Microsoft). Preferably MCSE or MCSA.
  • Have the ability to resolve TIER III level tickets (Master level) within a timely manner based on expertise within Active Directory.
  • Intermediate level experience managing a large-scale Enterprise environment with multiple Domains. 
  • Intermediate level experience troubleshooting server issues and diagnosing root cause of issue.
  • Must have in-depth experience in supporting at an Advanced Level:
  • Microsoft Active Directory infrastructure, including Hands-on experience administering Microsoft Active Directory.
  • 2008 R2/2012 R2 in a multi-site and multi-domain organization.
  • Microsoft WSUS infrastructure.
  • ADFS infrastructure.
  • DNS infrastructure.
  • AD Replication.
  • Must have in-depth knowledge of Group Policies to include WMI Filtering and understanding the importance of Precedence within them.
  • Expert level experience with RDS Technology and licensing.
  • Understanding of PKI Infrastructure to include DoD Certs and ADFS Infrastructure.
  • Intermediate level experience with PowerShell scripts with the ability to create and modify scripts as needed within environment.
  • Strong working knowledge of standards and protocols: TCP/IP, DNS, DHCP, WINS, SMTP, RPC, HTTPS; including knowledge of forest to forest trusts
  • Scripting expertise on Windows Server 2008 – 2012 as well as knowledge of IIS and networking concepts, VPN’ s, etc.
  • Must be willing to work on call and after hours to support Operations worldwide.
  • Maintain and understand systems, regulatory requirements, and security of hosting systems.
  • Ability to create and manage Group Policies including GPO precedence, enforcement and blocking.
  • OCSP infrastructure management and troubleshooting skills.
  • Active Directory Federation Services.
  • Smart card authentication management and troubleshooting skill.
  • Active Directory Certificate Services (ADCS).
Mxn19s6kt9fwsxffstc
Sologig Advice

For your privacy and protection, when applying to a job online: Never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction.Learn More

By applying to a job using sologig.com you are agreeing to comply with and be subject to the workinretail.com Terms and Conditions for use of our website. To use our website, you must agree with theTerms & Conditionsand both meet and comply with their provisions.
Active Directory Administrator Apply now