Principal Systems Administrator – active TS/SCI clearance at V2X

Working across the globe, V2X builds smart solutions designed to integrate physical and digital infrastructure from base to battlefield. We bring 120 years of successful mission support to improve security, streamline logistics, and enhance readiness. Aligned around a shared purpose, our $3.9B company and 16,000 people work alongside our clients, here and abroad, to tackle their most complex challenges with integrity, respect, responsibility, and professionalism.

We have a great opportunity for a Principal Systems Administrator – active TS/SCI clearance in Springfield, VA. The position is required to be onsite and requires the ability to travel.

This position will require U.S. citizenship and an active DoD Top Secret/SCI clearance. The position requires the ability to obtain and maintain a Counterintelligence (CI) Polygraph.

The Principal Systems Administrator serves as the in-house technical Subject Matter Expert (SME) in the server technology solutions (systems, applications, and services) which make up the customer’s Enterprise Information Technology (IT) Systems, Applications, and Services catalogs. Specifically, the Principal Systems Administrator will be responsible for a variety of engineering and operations and maintenance (O&M) related assignments as assigned to the customer’s IT Server O&M team.

Responsibilities

• The Principal Systems Administrator directly supports and oversees a team of Systems Administrators providing O&M support of deployed operational solutions backed by a variety of major technology vendors including, but not limited to, Citrix, Esri, McAfee, Microsoft, Red Hat, ServiceNow, and SolarWinds.
• The majority of enterprise services are hosted on enterprise Microsoft Windows Server implementations, but there are also select stand-ups of Linux distributions as well. A wide and deep range of technical knowledge and experience, as well as the technical aptitude and self-initiative to learn and grow is a must for this position.
• The Principal Systems Administrator serves as the highest internal escalation tier for the Server O&M team providing advanced troubleshooting support and guidance to rapidly assess and remediate challenges across the IT enterprise that arise.
• When issues, incidents, and/or problems do occur, the Principal Systems Administrator ensures the situation is driven, ideally delegated to a capable resource, and oversees the Server team’s troubleshooting and problem resolution, including Root Cause Analysis (RCA).
• The Principal Systems Administrator is responsible for ensuring the Server team as a whole produce and maintain documentation for the Solutions’ system(s), sub-system(s), and component(s) in the customer’s IT Services portfolio under their purview, including as-built documentation, capacity/performance plans, as well as all other area of server system life-cycle planning.
• The Principal Systems Administrator works with the customer’s IT Architecture and Engineering (A&E) team to explore, investigate, research, analyze, assess, implement, and transition new solutions to an operational state to modernize and improve upon existing service offices.

Qualifications

• Minimum Qualifications:
• Shall have 7 or more years of progressive and increasingly complex experience successfully providing O&M support of enterprise server operating systems (OSs) (Windows Server, Red Hat Enterprise Linux, etc.) and server applications and services, such as Microsoft Active Directory (AD), Exchange, File Services, SQL Server, and SharePoint, etc. across multi-platform information systems varying in size and complexity (LAN, MAN, WAN, etc.)
• Shall have 5 or more years of personal and hands-on experience managing and administering a complete Microsoft AD Domain and Forest Functional Level (DFL/FFL) of Windows Server 2008 R2, or higher, to include, but not be limited to, Domain Controllers, Global Catalogs, LDAP/S, Domain Naming Services, and Dynamic Host Configuration Protocol (DHCP). A strong understanding of the workings of AD is a must. Additional experience working with newer DFL/FFL levels (i.e., Windows Server 2012 or higher) is a plus.
• Shall have 5 or more years of experience operating and maintaining solutions in secure processing environments which must adhere to U.S. Government Information Assurance and Security standards such as the Defense Information Systems Agency (DISA) Security Requirements Guides (SRGs) and Security Technical Implementation Guides (STIGs).
• Shall have 3 or more years of demonstrated experience leading, directing, and evaluating task execution and performance exercising latitude and independence of globally dispersed Systems Administrator O&M teams to successfully meet team objectives, goals, and deadlines, as directed.
• Demonstrated experience leveraging industry and vendor provided product documentation and best practices to successfully deploy, operate, and maintain a variety of enterprise-level Microsoft-based applications (Exchange, IIS, SharePoint, SQL, etc.) and services (DFS, KMS, PKI, etc.), as well as major third-party software solutions within a production system, with focus on minimizing, and eliminating, if possible, negative end-user impact and/or downtime.
• Demonstrated experience authoring, testing, troubleshooting, and implementing scripted technologies, such as Microsoft PowerShell, PowerShell on Linux, Batch, VBScript, etc., to automate and orchestrate routine, as well as complex, O&M duties and responsibilities, with a focus on maximizing efficiency, consistency, and minimizing the subsequent human error factor of related tasks.
• Shall meet the Cyber IT/Cybersecurity Workforce (CSWF) System Administrator (451); Intermediate Level for SECNAV M-5239.2 compliance. (See Navy Cool Website).
• Security Clearance Requirements:
• This position will require an active DoD TS/SCI clearance and the ability to obtain and maintain a Counterintelligence (CI) Polygraph.
• Education:
• Bachelor’s degree in Computer Science, IT, Cybersecurity, or Data Science from an accredited University; or
• Certifications:
• CompTIA Security+ CE; or
• GIAC Security Essentials Certification (GSEC); or
• Systems Security Certified Practitioner (SSCP);
• Preferred qualifications:
• Strongly desired to have experience working with newer core Microsoft enterprise Server technologies to include AD, Windows 10, Windows Server 2016, Microsoft SQL Server 2016, and Microsoft IIS 10. Additional experience working with these products on the Windows Server Core offering is a plus.
• Strongly desired to have experience implementing, operating, and maintaining Microsoft based High-Availability (HA) Server technologies, such as Network Load Balancing (NLB) and Windows Failover Clusters (WFC), and Application-specific technologies, such as Microsoft Exchange Database Availability Groups (DAGs), Microsoft Internet Information System (IIS) Application Request Routing (ARR) Web Farms, and/or Microsoft SQL Server Always-on Availability Groups.
• Demonstrated experience working with and using Microsoft System Center Configuration Manager (SCCM) for the purposes of conducting Microsoft Windows endpoint baselining, inventorying, patching and updating, anu software metering across a globally dispersed enterprise-Wide Area Network (WAN). Ideally this will include experience configuring and/or building SCCM Device Collections, Applications, Deployment Packages, and/or Software Update Groups.
• Demonstrated experience administering on-premises Windows Server Update Services (WSUS) servers, to include downloading, exporting, and importing of metadata and update content when the WSUS server is completely disconnected from the internet (i.e. air gapped) for the purposes of hosting the update repository for Microsoft SCCM.
• Demonstrated experience implementing, configuring, securing, operating, and maintaining enterprise solutions to meet vendor and industry information security (INFOSEC) guidance and best practices, DISA SRG/STIG, information assurance (IA) compliance and governance demands, such as the use of cryptography to satisfy Data at-Rest Encryption (DARE) and Data-in-Flight Encryption (DIFE) requirements.
• Demonstrated experience receiving and reviewing notice of INFOSEC vulnerabilities, issues, and/or problems, research acceptable solutions, presenting the solution for customer acceptance, and implementation to remediate INFOSEC findings within predefined timeframes across multiple platforms, applications, and/or services.
• Demonstrated experience performing advanced troubleshooting techniques, methodologies, processes and practices to quickly identify and assess an issue, develop the strategy to resolve the issue, implement the resolution, and restore the degraded entity to an operational state all while maintaining concern for the original configuration and the overall Information Security (INFOSEC) posture of the environment.
• Demonstrated experience providing mentorship and On the Job Training (OJT) to junior and/or less experienced team members.
• Working knowledge and/or experience using Microsoft AD Certificate Services (ADCS) to provide enterprise production Public Key Infrastructure (PKI) services to end-points, applications and services, and users for the various common purposes – Server Authentication, Client Authentication, Encryption, Code Signing, Digital Certificate. This should include experience administering and working with Certificate Templates and Certificates, and installation and configuration of those certificates in the solutions.
• Working knowledge and/or experience using Microsoft Volume Activation Services, both AD-based Activation (ADBA) and Key Management Services (KMS), for Windows OS and Microsoft Office product offerings.
• Working knowledge and/or experience using Microsoft Exchange in a dispersed configuration to minimize, if not eliminate, single points of failure in the server roles and service offerings, to maximize availability, reliability, and resiliency. Experience working with Microsoft Exchange 2010 or newer is a plus.
• Working knowledge and/or experience using Microsoft Office SharePoint Server (MOSS) and Outlook Web Apps (OWA) to provide an enterprise platform to share and manage content, knowledge, and applications to empower teamwork, quickly find information, and seamlessly collaborate across the organization.
• Working knowledge and/or experience using Microsoft Distributed File Services (DFS) Namespaces (DFS-N) and Replication (DFS-R) to provide domain-based common file services access, configuration, and protection, to include off-site replication of business and mission critical data.
• Working knowledge of all aspects of enterprise-grade IT solutions across the technology stack: physical, networking, storage, virtualization, servers, applications, and services.
• Working knowledge and/or experience using McAfee ePolicy Orchestrator, Management for Optimized Virtual Environments (MOVE), and VirusScan Enterprise for Storage (VSES) for the purpose of satisfying IA/INFOSEC end-point anti-virus, threat, firewall, and web control is a plus.
• Working knowledge and/or experience using the SolarWinds Orion Platform (NPM, NTA, NCM, IPAM, UDT, NTM, DPA, SAM, etc.) for the purpose of enterprise-wide centralized entity performance, configuration, capacity, and availability monitoring are a plus.
• Working knowledge and/or experience providing server and/or desktop O&M support within Virtual Desktop Infrastructure (VDI) implementations are desired. Specific experience working with Citrix Virtual Apps and Desktops (formerly XenDesktop) hosted offerings is a plus.
• Familiarity with Microsoft’s Privileged Access Management (PAM) for AD Domain Services (ADDS) to include Just Enough Administration (JEA) and Just In Time (JIT) administration for the purposes of security privileged and highly sensitive accounts and introducing the concepts of Least Privilege (LP) and further Role-Based Access Control (RBAC) to production Microsoft AD implementation.
• Familiarity with IT Networking technologies, concepts, and approaches to routing and switching, TCP/IP, traffic analysis, packet capturing and analysis, and traffic flow is a plus.

We are committed to an inclusive and diverse workplace that values and supports the contributions of each individual. This commitment along with our common Vision and Values of Integrity, Respect, and Responsibility, allows us to leverage differences, encourage innovation and expand our success in the global marketplace. Vectrus is an Equal Opportunity /Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, protected veteran status or status as an individual with a disability. EOE/Minority/Female/Disabled/Veteran.

#LI-YG1 #clearance