The Senior System Administrator is responsible for operating secure computing platforms and enterprise applications in the Institute's network. Responsible for operating and maintaining the Institute's enterprise systems, including Windows and Linux servers, and Windows network services. Deploy, install, upgrade, and continuously improve the Institute's operating environment, and maintain the ongoing reliability, performance and support of the Information Technology infrastructure. This includes monitoring the operating environments, servers, and network; responding to incidents, problems and planning for growth. This role is also responsible for the overall operation and maintenance of the Institute's computing environment. Advanced problem diagnosis and resolution required, with a sharp focus on enterprise security analysis and optimizing system performance. This role responds to computer security breaches, malware infections, and cyber-security threats. Implements, supports and complies with ANSI's Information Security Management System security controls to protect enterprise data and IT infrastructure.

Other responsibilities include troubleshooting problems as reported by users, supporting remote access and Email services while maintaining a secure environment. Deploys, configures, and manages infrastructure solutions based on application needs and anticipated growth, deploys and configures new virtual servers and maintains the corporate information technology infrastructure. Has excellent communication skills and is able to work collaboratively with internal customers and technical colleagues. Works across all functional areas of the Institute and has a strong customer service orientation to ensure that all service requests and incidents are resolved in a professional manner. Shares expertise and provides individual training and support. Works with other technical staff and outside vendors to provide secure and reliable Information Technology services to all customers.

• Configure, maintain, monitor, upgrade, and support the VMware private cloud infrastructure in the corporate datacenter.
• Build, monitor, upgrade, and support Windows and Linux virtual servers.
• Configure, maintain, monitor, upgrade, and support network services, such as Active Directory and AD Replication, DNS, DHCP, SMB, DFSR.
• Configure, maintain, monitor, upgrade and support Exchange on-premise and Office 365 environment.
• Maintain, monitor, upgrade, and support the Institute's cyber-security infrastructure.
• Manage the Institute's Disaster Recovery plan by ensuring RPO and RTO are achieved, tape backups are performed on scheduled basis, and offsite replication functions as expected. Execute regularly scheduled disaster recovery testing.
• Monitor database performance and recommend changes.
• Monitor and administer storage devices, including SAN utilized by VMware vSphere environment.
• Support enterprise-wide work initiatives and projects.
• Recommend improvements that increase system security, reliability, and performance.
• Create, troubleshoot, and maintain scripts, including PowerShell and Batch scripts to automate repetitive tasks for improved reliability and efficiency.
• Provide infrastructure support for multiple developed systems and applications of medium to high complexity ensuring control, integrity, and accessibility.
• Work with application owners to provide support for business-critical applications, ensuring maximum uptime and reliability of revenue generating websites.
• Responsible for deploying and managing security SSL / PKI Certificates utilizing Enterprise Certificate Lifecycle Management solution.
• Manage, maintain, and support MFA infrastructure, including escalations from service desk as well as troubleshooting, configuring new SAML configurations and upgrading on-premise connectors.
• Support and comply with the Institute's Information Security Management System (ISO/IEC 27001:2013).
• Manage ANSI's security awareness program.
• Participate in IT audits and cybersecurity assessments at regular intervals.
• Serve as primary point of contact with the Institute's Security Operations Center (SOC) and manage the relationship. Manage alerts from the SOC, including responding, researching, and resolving alerts and / or incidents.
• Maintain, monitor, adjust, troubleshoot and create rules on firewalls.
• Ensure delivery of clear and concise performance and up time reports to management on a daily basis.
• Keep current on the cybersecurity, regulatory, and threat landscapes.
• Perform upgrades, patches, and updates to production applications and servers.
• Provide technical assistance to members of the IT Department.
• Prepare project plans, implementation scheduling, and coordinate new site installations.
• Document system and network infrastructure and application processes and configurations.

Information Security Responsibilities

• Attend / complete assigned information security training by the designated completion date.

• Read and adhere to published ISMS policies and procedures.

• Report timely any observed violations of ISMS policy - or known encroachments on information security - to your department leader and / or the Information Technology Department.

Education and Experience

• 8+ years hands-on experience deploying, administering, and upgrading Microsoft Active Directory, AD Sites and Services, FSMO Roles, AD Replication, ADFS
• 8+ years hands-on experience creating, tuning, and troubleshooting AD Group Policy Objects (GPO)
• 8+ years hands-on experience managing internal and external DNS servers, records and zones
• 8+ years hands-on experience deploying, administering, and upgrading Windows and Linux servers in a large IT environment (> 400 servers)
• 8+ years hands-on experience maintaining enterprise IT infrastructure
• 8+ years hands-on experience deploying, administering, and upgrading Windows Server and Client operating systems
• 8+ years hands-on experience deploying, administering, and upgrading VMware vSphere, including vCenter, ESXi, vCenter Networking (VMKernel Adapter, ISCSI Initiator, Distributed Switches), and vSphere Clustering, including DRS and HA.

• 8+ years hands-on experience managing firewalls, including troubleshooting and adjusting firewall rules
• 5+ years hands-on experience with PowerShell, including PowerCLI and AD Administration.

• 5+ years hands-on experience deploying, administering, and upgrading a VMware Horizon View cloud desktop environment
• 3+ years hands-on experience maintaining VMware Horizon View cloud desktop environment
• 2+ years hands-on experience administering public cloud environments
• Bachelor's degree in Engineering plus eight years' experience
• VMware, Microsoft Windows, and Cisco Systems certifications desired

• Demonstrated ability to take on a lead role coordinating projects
• Expert knowledge of VMware in a large environment with strong knowledge of VMware Clustering, configuration and management
• In-depth understanding of network security and access control
• Strong understanding of network routing and switching protocols
• Excellent knowledge of TCP/IP, including packet-level traffic analysis
• Cisco switches and router (Strong Knowledge Required), Pure storage systems
• Knowledge of administering Palo Alto Firewalls, Arista switches
• Strong security analysis skills and experience with SIEM and Vulnerability Management solutions
• Creative problem-solving skills
• Must be a self-starter with desire to excel and broaden the scope of experience and knowledge in infrastructure design
• Strong verbal, written, and interpersonal skills
• Occasional travel to datacenter and other offices, as needed