identity and access mgmt admin (132/cos).

job summary:
We are seeking an experienced Identity and Active Directory Administrator to join our team to perform deployment and maintenance of all active directory domain services/controllers.

 
location: Colorado Springs, Colorado
job type: Contract
salary: $60 - 79 per hour
work hours: 8am to 5pm
education: Bachelors
 
responsibilities:
- Deployment and maintenance of all active directory domain services/controllers. This includes monitoring health and status of all sites and services in the enterprise.

- Maintenance of certificate authority (CA) services, including issuing all SSL certificates and building out new CA servers in the enterprise.

Tracking all issued SSL certs for all enterprise enclaves and working with existing administrators to ensure no certificates expiration, potentially impacting services to C2BMC-G user base.

- Creating and maintenance of system policies, such as Windows group policies and tracking any potential issues as they arise on the system.

- Maintenance of all account matrices, including all applicable permissions cross overs between enclaves when/if needed.

- Work continuously with cyber team to ensure all RBAC controls are compliant with current policies for restriction access between enclaves and systems in enterprise for each applicable user/team. Assist cyber team with monitoring all directory services for out of the ordinary logins or accounts behavior metrics to ensure safety of data integrity of C2BMC-G system enterprise.

- Work with team to ensure proper distributed authentication services are configured property to ensure non-repudiation to all available sources. This can includes assisting with configuration of LDAP services to network/software solution, to ensure RBAC access to user base. Examples of LDAP/LDAPS connected endpoints configuration could be products like, HPE iLO interfaces, Gitlab, Cisco ISE, Tanium, MatterMost, Raritan KVM, etc.

 
qualifications:
MUST HAVE AN ACTIVE TOP SECRET CLEARANCE

- Bachelors with 5+ years experience

- 4+ years experience with Active Directory technologies in an enterprise level system

- Comfortable with creating and modifying group policies for forest level application

- Management of Active directory remote site replication policies and health monitoring

- Comfortable with using network/system health tracking solutions, such as SolarWinds for monitoring system health for both virtual infrastructure as well as hardware health

- Experience with writing standard operating procedures (SOP) documentation

#LI-JT1

 
skills: Required skills -

Active Directory, LDAP Services

Desired Skills & Experience -

- Thorough understanding and Active Directory and its replication structure when used in a distributed forest, separated through the use of WAN links

- Experience with an on premise multi domain environment using Role based administrative controls (RBAC) for least privilege

- Experience with DISA STIG compliance remediation using distributed group policy and SCAP compliance scanners

- Ability to integrate automation technologies into daily Active Directory use is a plus.



Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

At Randstad Digital, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact HRsupport@randstadusa.com.

Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad Digital offers a comprehensive benefits package, including health, an incentive and recognition program, and 401K contribution (all benefits are based on eligibility).

This posting is open for thirty (30) days.