No more applications are being accepted for this job
- In-depth knowledge of Windows Server features, roles, and functionalities.
- Understanding of Active Directory and Group Policy for managing configurations across multiple servers.
- Familiarity with various Windows Server editions (Standard, Datacenter, etc.) and their licensing requirements.
- Security Best Practices:
- Comprehensive understanding of security principles like least privilege, separation of duties, and defense in depth.
- Awareness of common security vulnerabilities affecting Windows servers and mitigation strategies.
- Ability to configure Group Policy Objects (GPOs) to enforce security settings on domain-joined servers.
- Hardening Techniques:
- Expertise in hardening essential services like Remote Desktop Protocol (RDP), file sharing, and network services.
- Knowledge of user account management, password policies, and strong authentication methods (e.g., MFA).
- Understanding of firewall configuration to restrict access to authorized traffic only.
- Scripting and Automation Skills:
- Proficiency in scripting languages like PowerShell or Python to automate server hardening tasks.
- Familiarity with configuration management tools like Ansible, Chef, or Puppet (optional, but highly beneficial).
- Windows Command Line Interface (CLI) Knowledge:
- Ability to use the wmic, gpresult, regedit, and other command-line tools for managing and verifying server configurations.
- Provides an overview of server security status and helps configure security settings.
- Utilize tools like Security Compliance Toolkit (SCT) and Microsoft Security Baseline Analyzer (MSBA) for automated assessments and baseline configuration recommendations.
- Configure Windows Event Viewer and use advanced tools like Security Information and Event Management (SIEM) for centralized log collection and analysis.
- Implementation and Verification:
- Applying Group Policy settings for user rights, local security policies, and auditing.
- Configuring local security settings such as password complexity, account lockouts, and file permissions.
- Disabling unused services and features to reduce the attack surface.
- Installing and configuring security software like antivirus, endpoint detection and response (EDR), and firewalls.
- Writing scripts to automate tasks
- Test the effectiveness of implemented hardening measures using vulnerability scanning tools and penetration testing methodologies.
- Document the hardening process, configuration changes, and security baselines for reference and future audits.
Windows Architect - Chicago, United States - Diverse Lynx
![Default job background](https://contents.bebee.com/public/img/bg-user-ex-1.jpg)
Description
Job Title:Windows ArchitectLocation: Chicago, IL
Duration: Fulltime
Job Description:Job Title Windows Architect Skill Windows Servers Skill Type Marketable Minimum Experience 6 - 8 Years QualificationLocation Chicago, IL
Windows Server Administration: