CACI is seeking a Sr. Systems Administrator to support the Warrior Prep center in Einsiedlerhof AS, Germany. AFAMS is the premier agency responsible for implementation, integration, and development of Modeling and Simulation (M&S) and training and analysis standards that support the US Air Force (USAF), Department of Defense (DoD), and mission partners requiring these capabilities to support the Warfighter in full-spectrum operations.
What You’ll Get to Do:
Support all permanent party and exercise core services or comparable technology with both Windows and Linux software platforms in accordance with WPC projects, exercise plans and designs.
Create standard operating procedures, maintenance checklists, monitor all performance and functionality of classified and unclassified networks, and provide accurate elevation drawings.
Engineer, implement and maintain Active Directory (AD) domain infrastructure utilizing Cisco IOS, Microsoft Windows, UNIX, and Linux client/server operating systems.
Obtain and interpret command and control (C2) Government off-the-shelf (GOTS) and Commercial off-the-shelf (COTS) documentation regarding AD implementation strategy. Implement and maintain an organizational unit structure independent from COTS default containers. Establish and maintain Windows-based authoritative “time” server hierarchy. Coordinate and implement AD configuration changes with WPC/SC and provide technical input for security accreditation efforts, as needed.
Provide guidance on AD user, computer, and group creation, including naming conventions and long-term disposition.
Provide technical support to WPC regarding AD account use violations and other security-related abuses and/or anomalies.
Develop scripts to assist in effective AD management. Develop and maintain AD Group Policy Objectives to ensure consistent application of security policy, improve administration, and support “Principle of Least Privilege” strategies.
Provide system administration support across multiple enclaves.
Ensure an encryptor management capability for network management personnel to remotely manage all deployed Tactical Local Area Network Encryptors (TACLANEs) at WPC.
More About the Role:
The Contractor shall support Microsoft-based operating systems, Open Virtual Memory System server, and LAN technologies, as well as the integration of specialized applications for permanent party, local exercise, and remote exercise use.
Provide Network Basic Input/output System and Fully Qualified Domain Name IP address and host name resolution capabilities.
Manage IP space of static/dynamically assigned addresses utilizing approved enterprise level tools.
Employ DoD, Defense Information Systems Agency (DISA), and USAF guidance, instructions, and tools to maintain and operate a robust Public Key Encryption/Public Key Infrastructure (PKE/PKI) environment that supports two-party authentication for WPC enclaves.
Obtain and install all applicable software updates, security patches and compliance orders while minimizing impact to the WPC training environment. Provide New Technology File System shared folder resources, implementation, and maintenance.
Provide system administration support across multiple enclaves. Oversee the confidentiality, integrity and high availability of shared folder resources in accordance with USAF policy, and advise SC when storage requirements change. Create and manage centralized print management functionality to ensure redundancy and availability of clustered services. Install and monitor system management utilities to identify abnormalities and performance issues, including but not limited to Solar Winds.
Advise SC on the usage and viability of required software licenses, at-risk critical systems, including single points of failure that could negatively affect continuous operations, appropriate levels of spare hardware resources and resulting mission impact if levels are not maintained.
Implement multiple Redundant Array of Independent Disk configurations to ensure high availability of server-based WPC resources.
Perform daily, weekly, and monthly backups of critical servers, system data and shared folders. Centrally manage and protect crucial resources through enterprise level backup and restoration of hardware and software systems.
Monitor and maintain tape backup system for optimum performance. Firewall and Intrusion Detection Systems, configure and implement approved rules to support events and exercises. Monitor and troubleshoot applicable firewall rules to facilitate successful event execution.
Coordinate with event planners, network management personnel, and end users to ensure firewall rules are functioning properly.
Install and update system configurations based on applicable DoD, DISA (including Security Technical Implementation Guide [STIG]), and USAF security guidelines. UNIX/Linux Server Operations:
The Contractor shall have a thorough understanding of Transmission Control Protocol (TCP)/Internet Protocol (IP) networks and unicast, broadcast and multicast network traffic.
Simulation Support: The Contractor employees responsible for server management shall learn sufficient information to assist with integrating the models and simulations, including Aggregate Level Simulation Protocol, DIS, and HLA.
Maintain the WPC’s Simulation Support Common Environment and its individual workstation components. including, but not limited to: Design and implement a common computing environment that will support research and development for current and future simulation models. Ensure the environment meets all DoD security and data protection standards. Engineer interfaces for tactical communications systems to simulate WPC simulations environment.
You’ll Bring These Qualifications:
Active DOD Secret security clearance.
MA/MS degree with 10+ year's of experience. If a candidate has no MA/MS degree an additional 6 years experience can be substituted for a total of 16 years experience.
Microsoft Certified Solutions Expert: Server Infrastructure (waivable) and Security + CE certification.
Experience with Hyper convergence technology, VMWare, VDI zero client architecture. Familiar with layer 2 and layer 3 networking devices (switches/routers), software engineering principles and programming.
These Qualifications Would be Nice to Have:
Experience in AF M&S
What We Can Offer You:
- We’ve been named a Best Place to Work by the Washington Post.
- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
- We offer competitive benefits and learning and development opportunities.
- We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
- For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.