Windows Systems Architect

The National Academies of Sciences, Engineering, and Medicine value diversity in our members, volunteers, and staff and strive for a culture of inclusion in our workplace and activities. Convening a diverse community to exchange ideas and perspectives enhances the quality of our work and increases our relevance as advisers to the nation about the most complex issues facing the nation and the world.

Remote 2

National Academies of Sciences Engineering Medicine

<br /><br />The National Academies of Sciences, Engineering, and Medicine provide independent, objective advice to inform policy with evidence, spark progress and innovation, and confront challenging issues for the benefit of society. We marshal knowledge and expertise across disciplines to study complex and sometimes contentious issues, reach consensus based on the evidence, and identify the best path forward. https://www.nationalacademies.org/

keywords: about the position,teamwork,technical,administration,create,microsoft,maintenance,research,experience,knowledge,education,licenses, certification or registration,work environment

Full time

$97,240 - $170,170

Overview: Requisition Number: R0002093<br /> <br />The Microsoft Windows / Active Directory Infrastructure Systems Architect is a highly technical position responsible for the analysis, design, implementation, administration, security, maintenance and support of the department&rsquo;s Windows Server / Active Directory-based environment. The environment is comprised of a multi-site, multi-forest Active Directory infrastructure, and supports Microsoft Exchange-based messaging services, Microsoft SharePoint collaboration services, Microsoft SQL Services, Single Sign-on services, File and Print Services, Microsoft O365, MS Teams. Microsoft-based configuration and software update management systems, systems performance management and infrastructure management tools. The Systems Architect will serve as a technical expert and will lead and work with users and collaborate with cross-functional teams.
Responsibilities: <ul> <li>Function as an SME for Active Directory / Windows environment, provide oversight on daily activities to set priorities, function as mentor, help with problem escalation, and communicate significant problems or issues to management.</li> <li>Function as a technical resource and integrator regarding Active Directory and Microsoft L3 issues to administrators, programmers, web developers, network security engineers, database analysts, network managers, and implementation teams.</li> <li>Function as an SME for Microsoft cloud environments (M365, MS Teams, Sharepoint, etc.) including configuration, integration, management, performance tuning and security.</li> <li>Participate in the identification of vulnerabilities and their mitigation and collaborate with security teams to conduct regular vulnerability assessments and implement necessary security measures.</li> <li>Participate in the analysis and design of new or existing infrastructure systems and services. Create and maintain comprehensive system documentation, including architecture diagrams, configurations, and operational procedures. Research, evaluate, recommend, and implement new technologies.</li> <li>Perform capacity planning, upgrades, and expansion of the environment.</li> <li>Maintain effective communications with vendors, peers, and clients in support of assigned projects.&nbsp;</li> </ul>
Requirements: <p><strong>Required Knowledge, Skills, and Abilities:</strong>&nbsp; The individual should be familiar with standard operating procedures and best practices in the listed technology areas, and rely on experience and judgment to plan and accomplish goals:</p> <ul> <li>Windows Server and Active Directory</li> <li>Windows Server and Active Directory Security</li> <li>Windows DFS-N/DFS-R</li> <li>Active Directory integrated applications (includes single sign-on)</li> <li>Active Directory Group Policy to implement security standards on Domain Controllers, Domain Member Servers, and Domain Member Workstations</li> <li>Microsoft Azure Active Directory (AAD) and ADFS in hybrid environments</li> <li>Microsoft Azure Active Directory (AAD) Conditional Access Policies, AAD Connect</li> <li>DNS services &bull; DHCP services &bull; NTP services</li> <li>File and Print services</li> <li>Auditing technologies and tools, and provide reports as needed</li> <li>Implement security policies and procedures</li> <li>SCCM and WSUS, for both servers and desktops</li> <li>Virtualization</li> <li>High Availability / Disaster Recovery</li> <li>M365, MS Teams and MS Intune deployment, administration, and integrations</li> <li>MS Exchange Hybrid - L3 Management</li> <li>MS Sharepoint - L3 Management (cloud and on-prem)</li> <li>Microsoft CA - PKI</li> <li>Experience using Microsoft PowerShell across the different Microsoft ecosystem. &nbsp;</li> <li>Familiarity of the following third-party technologies: F5 LTM/GTM, RSA SecurID, CyberArk, Carbon Black App Control, and Ivanti RADIUS.</li> </ul> <p><strong>Minimum Education/Training Requirements:</strong>&nbsp;&nbsp;Bachelor's Degree in Computer Science or related field, or equivalent knowledge.</p> <p><strong>Minimum Experience:</strong>&nbsp;&nbsp;Eight years of related professional experience. Experience of Windows architecture in a multi-site company and project management is preferred.&nbsp;<br /><br /></p> <p><strong>Physical Capabilities:</strong>&nbsp;&nbsp;Ability to work at a computer for extended periods of time.</p> <p>&nbsp;</p> <p><strong>Required Licenses, Certification or Registration:</strong>&nbsp; Preferred. Advanced IT Industry certifications including, but not limited to, Microsoft technologies (cloud and on-prem), CompTIA, etc.</p> <p>&nbsp;</p> <p><strong>Supervisory Responsibilities/Controls:</strong>&nbsp;&nbsp;Reports to the Systems Architect Manager.&nbsp; General direction is provided.</p> <p>&nbsp;</p> <p><strong>Work Environment:&nbsp;</strong>This role has been approved for 100% remote status, with occasional travel between National Academies&rsquo; facilities and to off-site meeting/sponsor locations. Please note that The National Academies of Sciences, Engineering, and Medicine is not an approved employer in all states, so any remote work arrangement will need to be approved.</p> <p><strong>Compensation Range: </strong>The National Academies of Sciences, Engineering, and Medicine support equity, fairness, and transparency in our compensation programs. An estimated compensation range for this position is $97,240 - $170,170. Compensation offered to the selected candidate will be based on the candidate&rsquo;s relevant knowledge, skills, and work experience, commensurate with compensation of current employees in comparable positions with similar knowledge, skills, and work experience, and subject to budget parameters. Note it is not typical for a candidate to be hired at the higher end of the range.&nbsp;</p> <p>&nbsp;</p> <p><strong>The National Academies&rsquo; Statement on Diversity and Inclusion:</strong></p> <p>To promote diversity and inclusion in the sciences, engineering, and medicine, we are committed to increasing the diversity of the National Academies&rsquo; staff, members, and volunteers to reflect the populations we serve. We pledge to cultivate an environment and culture that promotes inclusion and values respectful participation of all individuals who help advance the mission of the institution.</p>