Apply on Employer Site

Aretec, Inc. · 17 hours ago

Computer Systems Engineer Architect – SME

Washington D.C., DC, USA, 20001

Full-time

Onsite

Senior Level, Lead/Staff

8+ years exp

Aretec, Inc. is a company specializing in advanced analytics, machine learning, data analysis, cybersecurity, and business optimization for federal agencies. They are seeking a Computer Systems Engineer Architect – SME to lead the engineering and modernization of mission-critical directory services that support over 100,000 users across the Department of the Interior.

Cyber SecurityInformation TechnologyProfessional ServicesSoftware

No H1B

U.S. Citizen Only

Responsibilities

Architect, design, implement, and maintain DOI's Enterprise Active Directory (EAD) and identity services

Lead engineering for domain controllers, forest architecture, replication, schema management, and cross-domain trust relationships

Develop and maintain configuration, release, and change management processes

Engineer and maintain GPOs, AGPM, and enterprise configuration baselines

Operate and maintain enterprise PKI services including CAs, HSMs, CRLs, OCSP responders, and certificate templates

Support smart card authentication, HSPD-12, and secure credential issuance

Engineer and maintain ADFS, SAML 2.0, and federated authentication services

Administer enterprise DNS, the EDS namespace (doi.net), and DNS security configurations

Maintain directory synchronization services supporting ADFS, OVD, and identity platforms

Lead infrastructure planning, architectural design, and implementation for virtualization, clustering, storage, and high-availability systems

Support P-to-P, P-to-V, and V-to-V migrations and enterprise hosting platforms (Hyper-V, SAN)

Oversee backup and disaster recovery operations using Quest Recovery Manager and DOI-approved tools

Ensure compliance with FISMA, FDCC, NIST 800-53/73, SCAP, and DOI security policies

Maintain security posture through patching, antivirus, and vulnerability remediation

Monitor enterprise systems using SCOM, SCCM, NetIQ, ATA, and other approved tools

Serve as SME advisor to DOI OCIO, bureau administrators, and engineering teams

Provide knowledge transfer, SOP development, and training to system engineers and administrators

Support CAB processes, technical review boards, and enterprise governance

Qualification

Active DirectoryPKIDNSVirtualizationEnterprise AuthenticationPowerShellNIST ComplianceITILFISMAHSPD-12CollaborationMentorship

Required

8–12+ years of experience in enterprise systems engineering, Active Directory architecture, and infrastructure design

Expert‑level proficiency with Microsoft AD, DNS, PKI, ADFS, GPO, virtualization, and enterprise authentication

Experience supporting large‑scale federal environments or multi‑domain infrastructures

Strong understanding of NIST, ITIL, FISMA, HSPD‑12, and federal cybersecurity frameworks

Proven ability to diagnose and resolve complex performance issues across CPU, memory, disk I/O, and networking

Experience with PowerShell, automation, and enterprise configuration management tools

Bachelor's degree in Computer Science, Engineering, or related field (or equivalent experience)

Preferred

Microsoft Certified: Azure Solutions Architect Expert / Azure Administrator

Red Hat Certified Engineer (RHCE)

AWS/Azure/GCP cloud certifications

Security certifications aligned with IAT II/IAT III (Security+, CCNA Security, etc.)

Benefits

Health

Dental

Vision

401(k) with match

Certification stipends

Professional development opportunities

Flexible work arrangements

Generous PTO

Company

Aretec, Inc.

Since 2013, Aretec, Inc.

Founded in 2005

Fairfax, Virginia, USA

51-200 employees

https://aretecinc.com

Funding

Current Stage

Growth Stage

Leadership Team

Anthony (Tony) Rivera

CEO

Recent News

Newswire

Aretec Wealth Inc. Launches as Independent Wealth Management Firm in Canada

2024-10-22

Company data provided by crunchbase