Windows Systems Administration SME

Description

Job Description:

The Enterprise & Cyber Solutions Operation is hiring a Windows Systems Administration Subject Matter Expert to support the National Air and Space Intelligence Center at Wright-Patterson Air Force Base, Ohio. An active TS/SCI is required; all work is onsite.

Primary Responsibilities

• Provide Windows system administration

• Provide compliance with USAF/DIA directives, including but not limited to Time Compliance Network Orders (TCNO), Information Assurance Vulnerability Alerts (IAVA) and Intelligence Community Vulnerability Alerts (ICVA).

• Maintain operating system versions as required by the IC, DoD and USAF

• Maintain server, storage and workstation infrastructure in compliance with Command Cyber Readiness Inspection (CCRI) criteria

• Provide documented Operational views of new installations and upgrades and comply with all NASIC governance

• Sustain remote management services and connectivity for fiber-connected desktops

• Support roaming Windows profiles

• Support programs and applications to include VMWare ESX, SQL Server, SCCM, WSUS, Flexira, AdminStudio, Windows Server, Citrix, Windows Terminal Services, Hummingbird, Samba, Vintela Authentication Services, MS Cluster Services, Active Directory, Host Based Security System (HBSS) BMC/Remedy, Symantec Antivirus Server, McAfee Antivirus Server, Outlook, Internet Information Server, Adobe products, and various scripting languages including Perl, PowerShell, VB Script

• Support programs and applications to include NIS, DNS, Vintela Authentication Services, Zenoss Enterprise Network Modeling, Jumpstart, NetBackup, Veritas HSM, Veritas Clusters, IBRIX, VMWare, Docker, Kernel Virtual Machine (KVM), Virtual Box, Samba, Apache, Tomcat, Oracle Web Services, eXmeritus, SeaMonkey, Thunderbird, Firefox, Adobe, Symantec, Secure Messaging and Routing Terminal Server (Smart) and Smart.neXt, VMWare ESX and Consolidated Backup Server, and YUM repositories, Open Office and various programming/scripting languages including Fortran, C, C++, Perl, Bash, Python, Java, Bourne and Korn Shell

• Create user accounts; Configure storage, partition hard drives; Stand-up LDAP servers;; Manage firewalls;

• Provide production network integration between current and new services, as required

• Responsible for maintaining configuration management controls, to include security/update patches

• Create/maintain custom ad hoc scripting

• Maintain and administer Windows Terminal Services/Citrix

• Conduct periodic log reviews for usability and troubleshooting

• Develop change plans for all Windows Enterprise/Domain modifications

• Manage and administer Microsoft SQL database services

• Maintain Active Directory and associated custom scripting for account validation, office symbol changes and administration of Group Policy Objects (GPO)

• Maintain/update Active Directory Exchange extensions

• Maintain Domain Name Service configuration integrated across Windows

• Perform file and email message remediation as necessitated by identified security incidents

• Verify delivery and transit of email inbound/outbound to other SMTP mail servers

• Provide highly-available, fault tolerant file/print cluster services such as drivers, spooler and printer configuration

• Configure/maintain Windows attached storage

• Maintain TCP/IP configuration controls

• Maintain and track user access

• Support installation/admin/update of antivirus software, server and signatures.

• Maintain/administer/update approved third party applications

• Perform software loading and configuration controls

• Provide/maintain Windows server builds IAW NASIC processes and policies

• Document installations, removals, and change requests using the NASIC CCR process; gather technical information in support of the CCR process to include microcode software updates, license software changes, and updates to antivirus applications; submit a government CCR documenting the change and receiving approval prior to completing the modification

• Provide functional utilization reports as requested

• Build/maintain/administer license servers

• Create/maintain custom ad hoc scripting

• Maintain/update Kickstart server/workstation builds

• Maintain/update NIS maps

• Provide Network File System (NFS) support

• Maintain/update custom Samba services

• Maintain/update programming/scripting languages and libraries

• Develop configuration management tools including but not limited to Root_disk_dump, Useradd, and Qservers

• Develop scripts to maintain integrity of critical network services (DNS, NIS, LDAP, VAS password synchronization) between Solaris and Windows

• Perform functionality testing before application installation and regression testing post-install and generating before-after reporting

• Develop local processes and scripts to ensure consistent updates, along with on-linked hourly/daily/monthly backups of critical source files.

• Configure, maintain, update, and monitor samba services wherever customer Windows clients need access to enterprise class SAN and NAS storage

• Administer Windows domain accounts and groups

• Ensure proper client versions are being used and configurations are kept complaint

• Provide complete network modeling detailing all network equipment, servers and workstations

• Perform HSM database checks and tape library maintenance

• Provide Useradd application support

• Perform firmware upgrades

• Provide pre/post-maintenance test scriptage (qservers)

• Analyze system faults, troubleshoot, and run diagnostic tests on operating systems and hardware to detect problems

• Troubleshoot system performance problems and make system modifications to accommodate hardware upgrades

• Provide monthly functional area reports summarizing work accomplished, work planned in next month and important issues occurring during the month

Basic Qualifications

• Active TS/SCI clearance with a current (within last five years) Counter Intelligence Polygraph (CI Poly)

• BS degree and 8 – 12 years of prior relevant experience or Masters with 6 – 10 years of prior relevant experience

• Information Assurance Technical (IAT) Level II (e.g., Security+) certification

• One or more certifications in Windows/MS operating systems (e.g. MTA, MCSA, MCSE)

• Five years of experience in Windows System Administration to include Active Directory, SQL, SCCM, SCSM, Citrix

• Minimum of six years of experience in enterprise backup and restore solutions, storage area network (SAN), and network attached storage (NAS) with scripting languages

• Minimum of six years of experience in Perl scripting, Active Directory, Windows networking, and infrastructure support

• Minimum of three years of experience in Docker container platform deployment and management; version control systems (Git, Subversion, Bazaar, etc.)

• Understanding of TCP/IP networking to include experience troubleshooting TCP/IP, traffic analysis, common protocols and network diagnostics, FTP, and DNS issues

• Experience with public key infrastructure, SSH

• Detailed understanding of http and https protocols and related software, such as Apache httpd daemon

• Strong scripting/programming skills with experience in Bash, Python or other scripting languages

• Experience with block data storage technologies: software RAID, hardware RAID, Fibre channel, NFS, knowledge of storage protocols and connectivity

• Experience troubleshooting performance problems of computationally heavy loads in multi-cpu/threaded environments

• Experience with performance and diagnostic tools for benchmarking, analysis and tuning of systems, networking and storage

• Knowledge of cluster architecture, and system virtualization (xen/kvm/vnc)

• Experience with Docker container platform and the container management life cycle

• Familiarity with version control systems such as Git, Subversion, Bazaar, etc.

• Willingness to work any shift/extended shifts, and on call support, as required

Preferred Qualifications

• Experience supporting several of the following enterprise programs and applications to include VMWare ESX, SQL Server, SCCM, WSUS, Flexira, AdminStudio, Windows Server, Citrix, Windows Terminal Services, Hummingbird, Samba, Vintela Authentication Services, MS Cluster Services, Active Directory, Host Based Security System (HBSS) BMC/Remedy, Symantec Antivirus Server, McAfee Antivirus Server, Outlook, Internet Information Server, Adobe products, and various scripting languages including Perl, PowerShell, VB Script

• Experience supporting several of the following enterprise programs and applications to include NIS, DNS, Vintela Authentication Services, Zenoss Enterprise Network Modeling, Jumpstart, NetBackup, Veritas HSM, Veritas Clusters, IBRIX, VMWare, Docker, Kernel Virtual Machine (KVM), Virtual Box, Samba, Apache, Tomcat, Oracle Web Services, eXmeritus, SeaMonkey, Thunderbird, Firefox, Adobe, Symantec, Secure Messaging and Routing Terminal Server (Smart) and Smart.neXt, VMWare ESX and Consolidated Backup Server, and YUM repositories, Open Office and various programming/scripting languages including Fortran, C, C++, Perl, Bash, Python, Java, Bourne and Korn Shell

COMET 3

External Referral Bonus:

Potential for Telework:

Clearance Level Required:

Travel:

Scheduled Weekly Hours:

Shift:

Requisition Category:

Job Family:

Pay Range:

About Leidos

Leidos is a Fortune 500® information technology, engineering, and science solutions and services leader working to solve the world’s toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company’s 40,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $12.30 billion for the fiscal year ended January 1, 2021. For more information, visit www.Leidos.com.

Pay and Benefits

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here.

Securing Your Data

Leidos will never ask you to provide payment-related information at any part of the employment application process. And Leidos will communicate with you only through emails that are sent from a Leidos.com email address. If you receive an email purporting to be from Leidos that asks for payment-related information or any other personal information, please report the email to [email protected].

Commitment to Diversity

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.