CACI International Jobs

Job Information

CACI International Active Directory Architect in National Harbor, Maryland

Job Description

Team CACI has an exciting and challenging opportunity available for an Active Directory (AD) Architect supporting a DHS customer’s wide-area (WAN), local-area (LAN) and campus-area (CAN) networks across multiple security domains. We are a seeking an experienced and motivated Active Directory Architect to join our team to maintain and improve upon the existing security capabilities in support of our client. Scope will include troubleshooting and resolving all AD issues in the enterprise network both Cloud and on Premise; supporting and maintaining Windows AD services; providing AD engineering support for operational and implementation escalations to client and contract Tier 3/4 SMEs; implementing physical and logical controls in the enterprise AD network in accordance with client guidance; providing hardware and software configuration management for AD; integrating AD with other enterprise network services, such as Security Stack, Logging and Monitoring Tools; and supporting application Authorization requirements via LDAP groups, SAML and other available functionality. This role necessarily deals with highly confidential and sensitive information, and the role is expected to confirm to best handling practices.

What You’ll Get to Do:

Ensure the overall health and strong security posture of complex network architectures. The Active Directory (AD) Architect will be actively involved with all phases of security design, implementation, proactive monitoring, troubleshooting and analysis of firewalls, IDSs, VPNs, security controls and policies. Develops system specifications, architecture designs, integration and test plans, and all relevant documentation. Develops security assessment and mitigation strategies. Maintain compliance with DOD Information Assurance requirements as well as ensuring service performance indicators are met or exceeded.

More About the Role:

  • Work with both corporate and customer leadership to research, analyze, and implement enterprise-wide network security solutions/capabilities/enhancements to support customer business/mission goals and objectives.

  • Technical, Systems Engineer to help us develop our next generation IDAM, PKI and SSO platform to further enhance cybersecurity

  • Troubleshoot and resolve all AD issues in the enterprise network both Cloud and on Premise

  • Support and Maintain Windows AD services

  • Provide x509/PIV card Authentication and configuration as part of the available AD functionality

  • Provide AD engineering support for operational and implementation escalations to client and contract Tier 3/4 SMEs

  • Manage Microsoft Certificate Authorities requests

  • Manage and utilize Centrify for AD rights management

  • Hands on experience with Azure, Office 365, and ADFS

  • Implement physical and logical controls in the enterprise AD network in accordance with client guidance

  • Provide hardware and software configuration management for AD

  • Integrate AD with other enterprise network services, such as Security Stack, Logging and Monitoring Tools

  • Support application Authorization requirements via LDAP groups, SAML and other available functionality

  • Monitor daily AD health checks and monitor logs

  • Provide all reports using required formats and within stated timelines, both formal and adhoc

  • Strong communication and analytical skills

  • Ability to problem-solve, and think creatively

  • Experience handling, securing, and communicating highly confidential and sensitive information

  • Closely collaborating with cross-functional teams

You’ll Bring These Qualifications:

  • US Citizenship required

  • An active Entrance on Duty (EOD) is required to begin employment and must be maintained as a requirement of continued employment.

  • A minimum of 6+ years’ experience in authentication services or cybersecurity field with a focus on Active Directory architecture and administration

  • Experience with managing, implementing and configuration of Active Directory related authentication frameworks and associated tools

  • Proven ability to support and maintain Windows AD services

  • Experience with SAML

  • Experience with x509/PIV card Authentication a plus

  • Experience with Centrify a plus

  • Experience and familiarity with IT management products and services

  • Experience with networking, server, application and development technologies

  • Domain expertise with IT operations, security or compliance is desirable

  • Strong written and verbal communication skills

  • Team Player – This role is part of a much larger team

These Qualifications Would be Nice to Have:

  • Relevant DHS focused experience

  • Bachelor’s degree, with preference in computer science or information systems, or equivalent combination of education/ 15 years of experience

  • Relative certifications are a plus

What We Can Offer You:- We’ve been named a Best Place to Work by the Washington Post.- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.- We offer competitive benefits and learning and development opportunities.- We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.- For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.

Job Location

US-National Harbor-MD-MARYLAND SUBURBAN

CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.

DirectEmployers