Requirements
Qualifications and Skills
Required
- Bachelor’s degree in Computer Science, Information Technology, or a related field, or equivalent experience.
- 5 + years of hands -on experience administering enterprise -level Windows Server environments and Active Directory.
- Expert -level knowledge of Active Directory, Group Policy, DNS, and DHCP.
- Strong experience with Windows security hardening, patch management, and vulnerability remediation.
- Proficiency in PowerShell scripting for automation.
- In -depth experience with virtualization technologies (Hyper -V or VMware).
- Solid understanding of core networking concepts (TCP/IP, VLANs, firewalls, VPN).
- Experience with backup and disaster recovery methodologies and tools.
- Excellent analytical and problem -solving skills.
- Strong communication and documentation skills.
Preferred (A Plus)
- Relevant industry certifications (e.g., Microsoft Certified: Azure Administrator Associate (AZ -104 ), Microsoft 365 Certified: Enterprise Administrator Expert (MS -100/101 ), CompTIA Security +, CISSP).
- Hands -on experience with Microsoft Azure cloud services (Azure AD, Azure VM, Sentinel, Defender suite).
- Experience with identity management and single sign -on (SSO) solutions (e.g., SAML, OAuth, Okta).
- Knowledge of SIEM systems and security monitoring.
- Experience with compliance frameworks (NIST, CIS, ISO 27001 ).
Responsibilities
Key Responsibilities
Active Directory And Identity Management
- Design, administer, and maintain a complex Microsoft Active Directory Domain Services (AD DS) environment, including domain controllers, forests, domains, and trusts.
- Manage Group Policy Objects (GPOs) for security hardening, software deployment, and user configuration across the enterprise.
- Administer Azure Active Directory (Azure AD) and hybrid identity solutions (Azure AD Connect).
- Implement and manage identity and access management (IAM) solutions, including user provisioning, de -provisioning, and role -based access control (RBAC).
- Troubleshoot and resolve complex AD replication, authentication, and DNS issues.
Windows Server Management
- Install, configure, patch, and maintain Windows Server operating systems (2016, 2019, 2022 ).
- Manage core infrastructure services including DNS, DHCP, DFS, and File/Print services.
- Implement and manage Hyper -V or VMware virtualization platforms.
- Perform system monitoring, performance tuning, and capacity planning.
Security And Compliance
- Harden Windows servers and Active Directory according to industry benchmarks (e.g., CIS Benchmarks, NIST guidelines).
- Develop and execute a rigorous patch management strategy for all Windows systems.
- Implement and manage endpoint security solutions (Microsoft Defender for Endpoint, CrowdStrike, etc.).
- Configure and manage security tools such as Microsoft Defender for Identity, and Azure Sentinel for threat detection and response.
- Conduct regular security audits, access reviews, and vulnerability assessments.
- Respond to security incidents, participate in investigations, and implement remediation plans.
- Ensure compliance with organizational policies and relevant regulations (e.g., SOX, HIPAA, GDPR).
Automation And Scripting
- Automate repetitive administrative tasks using PowerShell scripting.
- Utilize DevOps principles and infrastructure -as -code (IaC) tools like Ansible, Terraform, or DSC for configuration management.
Backup, Disaster Recovery, And High Availability
- Design, test, and maintain robust backup and disaster recovery solutions for critical infrastructure.
- Implement high -availability configurations like Failover Clustering.
Collaboration And Support
- Serve as an escalation point for help desk and other IT teams for complex issues.
- Create and maintain detailed system documentation, network diagrams, and operational procedures.
- Collaborate with network, security, and application teams on projects and initiatives.
