Job Description
Job Title:Azure Systems Administrator
Job Location: Tallahassee, FL
Job Duration: 12 months
Job Duties:
Background Check :Yes
Job Location: Tallahassee, FL
Job Duration: 12 months
Job Duties:
- Collaborate with stakeholders to understand business requirements for remote access.
- Design the architecture, topology, and components of the Always On VPN solution.
- Define the server placement, load balancing, and redundancy strategy.
- Set up and configure the necessary VPN servers and infrastructure.
- Implement Public Key Infrastructure (PKI) for server and client certificates.
- Configure VPN profiles and policies for different user groups and devices.
- Implement strong authentication methods, including multi-factor authentication (MFA).
- Ensure compliance with security protocols and encryption standards.
- Monitor and mitigate potential security vulnerabilities.
- Document the entire VPN architecture, configuration settings, and procedures.
- Create user guides and training materials for employees and IT staff.
- Provide training sessions to educate users on connecting to the VPN.
- Architect and implement an end-to-end B2C strategy. All DOR application dependencies shall be included in the strategy. All services shall be included in the strategy, considering all user flows.
- All federal and state statutes must be followed. Single sign on and MFA will be required.
- Identifies, designs, implements, and maintains a secure identity and access management solution.
- Identifies, prioritizes, resolves, and documents technical operational issues related to the enterprise server and active directory environments
- Maintain operating systems lifecycle of enterprise servers.
- Identifies, documents, and implements enhancements and automations to the AD domain.
- Review and make recommendations for AD process improvements.
- Review and make recommendations for Group Policy improvements,
- Review and make recommendations on cloud readiness of enterprise systems.
- Provide knowledge transfer to technical and non-technical staff as needed.
- Provide status reporting of assignments.
- Ensure the availability and continuity of the Windows servers and domain.
- Follow all Department, ISP, and team defined standards and procedures.
- Complete all required policy training and acknowledgement courses.
- Performs other related duties, as required.
- Experience Checkpoint firewalls
- Experience EXOS
- Experience in managing WUG.
- Experience in Dynatrace
- Experience CSAB ordering
- Knowledge of ITSM
- Knowledge of NIST
- Experience with B2C implementation in government setting
- Experience with Microsoft Office 365 and Outlook administration
- Experience with Hyper-v and VMWare systems
- Experience with cloud technologies Azure, AWS
- Knowledge of general networking infrastructure technologies
- Knowledge of the Information Technology Infrastructure Library (ITIL)
- Knowledge of Okta, Ping, Azure AD, OAuth, OpenID Connect (OIDC), SAML, Header-based authentication, LDAP, SCIM technologies.
- Working in a project-oriented environment
- Excellent troubleshooting skills
- Excellent interpersonal and communication skills
- Detail-oriented, ability to switch tasks, ability to self-direct and prioritize tasks.
- Researching and investigating problems and developing viable solutions; reporting findings/recommendations clearly and effectively
- Knowledge of MS Office Suite
- Five years' experience in architect and design of Always on VPN solutions
- Five years' experience in designing network topology.
- Five years' experience in design and implementation firewall solutions
- Five years' experience in proxy (forward and reverse) design
- Five years' experience in configure and management of Windows Server roles and features required for
- VPN functionality, such as Routing and Remote Access Services (RRAS), Network Policy Server (NPS) and Active Directory Certificate Services (AD CS)
- Five Years' experience in User Identity Management
- Five years' experience in implementing multi-factor authentication (MFA)
- Five years' experience in implementing Single Sign-On (SSO)
- Seven years of experience with Microsoft server administration
- Five years of experience with Microsoft Active Directory
- Three years of experience with Okta, Ping, Azure AD, OAuth, OpenID Connect (OIDC), SAML, Headerbased authentication, LDAP, SCIM, or other relevant technologies.
- Five years' experience Integrating IAM systems with various applications and platforms.
- Enabling secure user authentication and access across multiple domains
- Experience with implementing SAP authentication and authorization
- Experience in enforcing least privilege.
- Experience with Directory Service
- Experience with Privileged Access Management (PAM)
- Experience automating user onboarding and offboarding processes.
- Experience ensuring timely removal of access for departing employees or contractors.
- Experience in configuring VPN client settings on various devices and platforms, including Windows PCs, mobile devices, and remote laptops, ensuring seamless and secure connections.
Background Check :Yes