Job title: Principal System Administrator – Identity & Access Management Administrator
Company: Northrop Grumman
Job description: RELOCATION ASSISTANCE: No relocation assistance availableCLEARANCE TYPE: Top SecretTRAVEL: Yes, 10% of the TimeDescriptionAt Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people’s lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation’s history – from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they’re making history.Northrop Grumman Space Systems – Launch and Missile Defense Systems has an exciting career opportunity for a Principal System Administrator – Identity & Access Management Administrator (25-132) to join our team of qualified, diverse individuals. This position will be located at Schriever Space Force Base, CO.Position Overview:The Command and Control, Battle Management, and Communications (C2BMC) program integrates the Missile Defense System. It is a vital operational system that enables the U.S. president, secretary of defense, and combatant commanders at strategic, regional, and operational levels to systematically plan ballistic missile defense operations, to see the battle develop collectively, and to dynamically manage designated networked sensors and weapons systems to achieve global and regional mission objectives. C2BMC supports a layered missile defense capability that enables an optimized response to threats of all ranges in all phases of flight. C2BMC is the force multiplier that globally and regionally networks integrate, synchronizing autonomous sensor and weapon systems and operations to optimize performance. C2BMC is integral to all system ground and flight tests, which verify and exercise all current and future missile defense system capabilities.Essential Functions:
- This position is supporting Global Platform and Infrastructure at Schriever Space Force Base.
- This individual is responsible for deployment and maintenance of all directory service types activities, such as active directory domain services/controllers, certificate authorities services, policy tracking/creation, and account management functions in the enterprise.
- Must be a detail oriented individual that is able to track the impact of events/actions on the underlying infrastructure being managed, such as replication schedules and group policies.
- Deployment and maintenance of all active directory domain services/controllers.
- This includes monitoring health and status of all sites and services in the enterprise.
- Maintenance of certificate authority (CA) services, including issuing all SSL certificates and building out new CA servers in the enterprise. Tracking all issued SSL certs for all enterprise enclaves and working with existing administrators to ensure no certificates expiration, potentially impacting services to C2BMC-G user base.
- Creating and maintenance of system policies, such as Windows group policies and tracking any potential issues as they arise on the system. Maintenance of all account matrices, including all applicable permissions cross overs between enclaves when/if needed.
- Work continuously with cyber team to ensure all RBAC controls are compliant with current policies for restriction access between enclaves and systems in enterprise for each applicable user/team. Assist cyber team with monitoring all directory services for out of the ordinary logins or accounts behavior metrics to ensure safety of data integrity of C2BMC-G system enterprise.
- Work with team to ensure proper distributed authentication services are configured property to ensure non-repudiation to all available sources. This can includes assisting with configuration of LDAP services to network/software solution, to ensure RBAC access to user base. Examples of LDAP/LDAPS connected endpoints configuration could be products like, HPE iLO interfaces, Gitlab, Cisco ISE, Tanium, MatterMost, Raritan KVM, etc.
Basic Qualifications:Please note your updated security clearance and IAT/relevant certifications on your resume, if applicable.
- An active Top Secret clearance is required to start with an eligibility for SCI and SAP access
- 5 years’ experience with a bachelor’s degree in engineering, computer science, mathematics or a related field; 3 years’ experience with a master’s degree in engineering, computer science, mathematics or a related field; or 9 years’ experience in lieu of a degree
- Experience with Active Directory technologies in an enterprise level system
- Comfortable with creating and modifying group policies for forest level application
- Management of Active directory remote site replication policies and health monitoring
- Comfortable with using network/system health tracking solutions, such as SolarWinds for monitoring system health for both virtual infrastructure as well as hardware health
- Experience with writing standard operating procedures (SOP) documentation
Preferred Qualifications:
- Thorough understanding and Active Directory and its replication structure when used in a distributed forest, separated through the use of WAN links
- Experience with an on premise multi domain environment using Role based administrative controls (RBAC) for least privilege
- Experience with DISA STIG compliance remediation using distributed group policy and SCAP compliance scanners
- Ability to integrate automation technologies into daily Active Directory use is a plus.
Salary Range: $91,200.00 – $136,800.00The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate’s experience, education, skills and current market conditions.Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.Northrop Grumman is an Equal Opportunity Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO and pay transparency statement, please visit http://www.northropgrumman.com/EEO. U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.
Expected salary: $91200 – 136800 per year
Location: Schriever Air Force Base, CO
Job date: Tue, 01 Apr 2025 22:00:53 GMT
Apply for the job now!