SkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative enterprise-wide solutions as well as targeted services addressing the complex challenges faced by our federal government clients. Our focus is on enabling our clients to deliver their mission most efficiently and effectively – anytime, anywhere, securely. We combine technical expertise, mission awareness, and an empowered workforce to produce meaningful results. This role may require periodic monthly on-site support.

This is a contingent position based upon customer approval and funding.

As a SkyePoint employee you will be given the opportunity to design, configure, and deploy some of the IT industry’s latest products and services to ensure that our most critical customers maintain the ability to securely communicate and collaborate to meet mission demands.  In your new role you will share and partner with other like-minded, dedicated professionals to review your thoughts and ideas to improve upon and deploy new enterprise IT infrastructures and configurations. You will utilize not only your existing enterprise IT skills and talents to meet your customer’s needs, but also draw upon those new skills that you will learn in your new role. Your ideas and contributions will matter.

What can you achieve and how you will make a difference

• As an Active Directory Architect,  you will utilize your ten (10) plus years of experince to provide an in-depth knowledge of the Active Directory, Domain controllers, Azure Cloud, and a proficiency in PowerShell scripting. The candidate must have demonstrated prior and active experience in managing multi-domain issues.
• You will support the continuing goal of incorporating these innovative technologies into the Department of State (DOS) technical modernization program.
• Prrovide cybersecurity, strategy, engineering, operations, and maintenance services that deliver business and mission value anytime, anywhere, and securely from any device. Working with our clients, we link business strategy to operational reality, helping clients integrate, innovate and grow. 
• Apply advanced subject matter knowledge to solve complex business issues and is regarded as a subject matter expert.
• Contributes to the development of new ideas and methods. Works on complex problems where analysis of situations or data requires an in-depth evaluation of multiple factors.
• Provide expert providing direction and guidance to process improvements and establishing policies.
• Participates as a member of and leads development teams. Performs analysis of complex functional and business requirements. Prepares code stubs for others. Completes code to implement solutions. Designs solutions for others to code. Participates in cross-functional teams. Leads design activities May provide mentoring and guidance to other developers. Designs, prepares, and executes Unit tests.
• Demonstrates technical leadership and exerts influence outside of the immediate team. Develops innovative team solutions to complex problems. Contributes to strategic direction for teams.
• Applies in-depth or broad technical knowledge to provide maintenance solutions across one or more technology areas
• Independently implements end-user or enterprise infrastructure or services of significant complexity.
• Integrates technical expertise and business understanding to create superior solutions for the company and customers. Mentors and consults with team members and other organizations, customers, and vendors on complex issues.
• Exercises significant independent judgment within broadly defined policies and practices to determine the best method for accomplishing work and achieving objectives.
• Develop comprehensive and accurate reports and presentations for both technical and executive audiences. 
• Create and document detailed guides and tracking documents - for clients to leverage as part of Active Directory hardening and overall infrastructure enhancements.
• Tier 3 level troubleshooting including diagnosing complex replication and multi domain issues.
• Develop standards, target states, roadmaps, effectively communicating and obtaining consensus across architecture, engineering, and operations teams

The Talent You Bring with these Qualifications 

• Bachelor’s degree with 10+ years of recent system engineering experience. Additional training and experience may be substituted in lieu of a degree.
• Expert knowledge administering AD, AAD and ADFS in hybrid environments
• Expert knowledge administering AD and AAD support services such as AAD Conditional Access Policies, AAD Self-Service Password Reset (SSPR), AAD Connect and Windows Server DNS
• Expert knowledge designing, testing, deploying and maintaining Active Directory Group Policy (GPO) for the purpose of securing Domain Controllers, Domain Member Servers and Domain Member Workstations
• Expert analyzing security risks with proposed changed to AD, AAD, ADFS, AZAP, Domain Controllers, GPOs, etc. and providing an understandable summary of those risks to management for proper implementation decisions
• Experience administering multiple AD forests with forest trusts.
• Knowledge of third-party AD support services such as Quest Active Roles, Quest Change Auditor for AD
• Knowledge of Microsoft Identity Manager
• Knowledge on configuring, deploying and onboarding applications for remote access via AZAP, including the use of Kerberos constrained delegation (KCD) for Single Sign On.
• Must have a deep and thorough understanding of monitoring best practices,
• Extensive experience with infrastructure and server theories, principles, and concepts; application infrastructure and standards; networking fundamentals
• Experience translating technical issues into understandable business language for end-users
• Experience working with cyber security teams to actively update AAD conditional access policy and AD Group Policies as determined by cyber threats and operational requirements
• Knowledge of Software as a Service (SaaS), Platform as a Service (PaaS) and Infrastructure as a Service (IaaS) – as it pertains to Enterprise Domain design and support
• Experience as a subject matter expert (SME) Senior Active Directory System Engineer or Architect in a large AD environment with the proven ability to coordinate technical efforts and resolve issues across multiple teams.
• Strong working knowledge of Windows 2016 and 2019 Member Servers and Domain Controller operating systems platforms, DNS, networks, DMZs, network security zones
• PowerShell scripting experience and capabilities
• Expert knowledge of ADDS, ADFS, Azure AD and Windows Server Operating Systems 2016 & up.
• Hands-on expertise with Azure AD Connect and  AD Cloud SaaS.

Applicants selected for this position will require at a minimum an Interim Secret Clearance to start work and will be processed for an active Top Secret Clearance, and background screening.  Applicants selected for a security clearance will be subject to a security investigation and must meet eligibility requirement for access to classified information.