• Security Infrastructure Management for O365

    Job Locations US-MD-Woodlawn
    # of Openings
    1
    Category
    Information Technology
    Agency/Project
    SSA
    Job ID
    2018-2651
  • Overview

    OBXtek Inc. is an established award-winning business providing information technology and professional management services to the federal government. OBXtek is a leader in its field and is committed to identifying, developing, and delivering innovative, mission-focused technical and logistical solutions to over 15 civilian and military partners in the Federal Government.

     

    As a prime contractor for 93% of our current work, we possess a robust corporate infrastructure that provides management oversight and support for all our programs. OBXtek pairs lessons learned across disciplines with industry standard quality practices such as CMMI-Dev Level III, ITIL, 6Sigma, PMI, and ISO to create processes that leverage best practices and result in novel, successful solutions.

    Responsibilities

    OBXtek is currently staffing for an Expert Intrusion Protection Specialist to support SSA's DISSAO division with Security Infrastructure Management for O365.

     

    In order to improve service and reduce the administrative resources, SSA decided to implement Microsoft's Dynamic365 which is a cloud service offering. Office of Systems Operations and Hardware Engineering / Division of Internet/Intranet Application Services (OSOHE/DIIAS) is the agency lead component.

     

    DIIAS “Back Office” support includes two office services: Exchange Online that will provide e-mail and SharePoint Online will serve as the online collaboration tool. These services will be provided to the nearly 84,000 agency, state, contractor and other employees that use our network throughout the United States/Territories and Embassies/Consulates. This translates to over 106,000 mailboxes in use for active personal, resource and disabled user accounts.

     

    Under the IT Modernization Project and Agency Cloud Initiative (ACI), SharePoint and Exchange will migrate to Dynamic365. This effort will have activities and process that will ensure the effort adheres to the SSA’s security requirements and comply with government regulations are necessary. One of those activities is the creation of and administration of an Internet proxy bi-pass.

     

    OBXtek resources are required to support for the DISSAO/Security Administration Branch (SAB). They will ensure availability and stability of the systems, processes, programs and equipment used to process SAB workloads. They will also develop viable processing techniques to solve technical problems and document techniques in a manner that leads to easy implementation and standardization.

     

    This task is for the purpose of developing, maintaining and supporting cloud infrastructure security. This task requires developing, implementing and maintaining a web proxy bypass list for Office O365 and all future process that will use Microsoft’s Cloud Offering, Dynamic365.

     

    In support of the task, the candidate shall perform activities such as those described in the sub-tasks below.

     

    1. Creation and administration of SSA’s Proxy Bypass File for Dynamic365

     

    Purpose: Manage access to the agency’s secure connection to Dynamic365 (called Express Route).

     

    Activities:

    • Develop and manage a Web Proxy By-pass File for Express Route that SSA’s networking component will utilize.
    • Gather functional requirements from a variety of SSA stakeholders in the creation of this file. SSA’s task manager will identify the SSA stakeholders. This gathering can be done utilizing SSA’s email system, SharePoint or by telephone.
    • Work with SSA’s networking component to integrate the file into the existing SSA load balancers.
    • Ensure the Proxy By-pass File is up to date and current.

     

     

    2. Administration of SSA’s McAfee Web Gateway, creating and managing the proxy by-pass workflow process

     

    Purpose: To implement Inputs to the Proxy By-Pass File must be associated with an SSA business process and business process owner. SSA must know what information technology processes and functions needs to use Express Route and who to work with to ensure the Bi-Pass File is accurate and properly maintained. The Proxy By-Pass File is a living document that will change over time.

     

    Activities:

    • Create a workflow input process that will document the link between the contents of the Proxy Bi-Pass File to a business process owner
    • Create a Proxy By-Pass File input process using SharePoint. That will allow business owners to provide updates, as they are created/identified.
    • Administer SSA’s McAfee Web Gateway

     

    3. Create Auditable Records

     

    Purpose: SSA must be able to provide documentation that clearly links the contents of the proxy by-pass file to a business owner.

     

    Activities:

    • Pull reports from the Proxy By-pass File process that connects input requests to the contents of the file.

     

     

     

    4. Troubleshoot issues associated with the Proxy By-pass process

     

    Purpose: Internet access and access to Express Route are crucial aspects of business within SSA. The office of systems is tasked with ensure that access. The purpose of this task is for the proxy by-pass owner to work with the networking components of SSA to ensure trouble shoot and correct any situation that may be preventing Express Route Access.

     

    Activities:

    • Work in partnership with other SSA components to troubleshoot and correct issues associated with Express Route Access as needed.

    Qualifications

    Experience:

    • 10 years experience developing, maintaining and supporting cloud infrastructure security required
    • Experience with developing, implementing and maintaining web proxy bypass lists for O365 a plus
    • Must pass public trust clearance prior to start of work

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed