General Position Summary: The position will be responsible for supporting Single Sign On (SSO) and Multi Factor Authentication (MFA) for Johns Hopkins. Provides technical leadership, project management, and task execution for administration, programming, maintenance, performance, implementation, security and support of various departmental and enterprise wide multiple platforms, including the installation and testing of new software, operating systems, related utilities/services, and hardware products as well as the integration of new products and /or software release upgrades into the current environment. Conducts systems performance evaluations, monitoring, patch management and security evaluations. Analyzes user needs in various computer environments (including but not limited to mainframe, Windows, and mid-range) and makes recommendations for products and services that meet those needs. Ensures that all systems environments are maintained in an efficient and cost-effective manner.
Provide technical leadership based on extensive technical knowledge, skills and experience; influence clients towards innovative/integrated solutions. Responsible for full life-cycle of large sized complex projects which can span an entire department, division, or enterprise-wide level. For enterprise-wide level, typical projects impact the broader customer base of Johns Hopkins and its most mission critical systems. Projects often require interaction with various departments and teams both within and outside the department. Complex and large projects typically are applications/systems with 501-3000 concurrent users requiring uptime commensurate with Clinical, Business critical, Education critical or Enterprise systems. Impacts of outages will cause major disruption such as implementation of downtime procedures, major disruption of business operations, and/or cascades to more than 7 systems/applications. Disruptions are without obvious or simple workarounds. Strong technical skills; strong ability to understand complex business processes. Build and maintain client relationships through positive interactions. Provide assistance to lower level positions.
The position will be responsible for working with IT Administrators and customers across the institution. SSO and MFA tools are supported on desktops, laptops and mobile devices running Windows, Linux, iOS and Android. Position will be responsible for support of the backend.
The responsibilities listed below are typical examples of the work performed by this position. Not all duties assigned to this position are included, nor is it expected that everyone in this position will be assigned every job responsibility.
SYSTEMS ANALYSIS/DESIGN (ENVIRONMENT/PLATFORM)
Design highly complex business, clinical, education, or infrastructure solutions by meeting with customers to observe and understand current processes and the issues related to those processes. Provide written documentation and diagrams of findings to share with the client and other IT colleagues. Assist lower levels to effectively use the system's technical software.
Design highly complex solutions that conform to institutional policies, standards, and guidelines, and infrastructure environment and to vendor and industry best practices to deliver a quality product.
Select infrastructure applications that reside between end user applications and hardware operating systems by working with vendors, customers, and other sources (i.e., open source or Internet2 initiatives) to provide configurable tools to the customers.
Develop new methods to improve service processes, performance, and functionality by examining system management tools and processes. Review new methods suggested by lower levels and approve the work.
Research, recommend, and implement new technologies based on the value to the institution.
Works with vendor processes and products to improve the quality and fit for the institution. Typically establishes product mastery, and demonstrates initiative for improvements.
Assign and lead technical systems analysis and design tasks for assigned environments and platforms.
INSTALL AND CONFIGURE
Install and configure highly complex server hardware and operating systems by following technical documentation to provide a working product.
Evaluate, implement, and manage appropriate highly complex software and hardware solutions by using best practices for the environment to ensure system integrity.
Install and configure infrastructure applications by following product installation and configuration directions and industry best practices to deliver a solution to the customers.
Ensure an effective schedule is developed of system backups and archive operations by providing leadership, oversight, and direction to technical team in best practices for the environment to ensure data/media recoverability.
Lead and provide direction to technical team for all of above tasks by reviewing work and adherence to institutional standards and guidelines in order to deliver projects on time and within budget to the customers
MAINTAIN AND TROUBLESHOOT
Provide highly complex server level administration (manage HW/SW, maintenance, upgrades and patches, account maintenance, backups and recoveries and assist users) by following documented procedures to ensure a stable environment.
Monitor and tune the system by following documentation and procedures to achieve optimum performance levels.
Develop highly complex scripts and solutions by using departmental standards to automate systems management.
Perform highly complex system software upgrades including planning and scheduling, testing, and coordination by following documentation and departmental standards to provide a stable product for the environment.
Audit and maintain user access and authorization by following access and authorization documentation to provide for system security.
Generate and maintain highly complex periodic and ongoing system specific reports by using appropriate tools to assess system performance, integrity and capacity in order to deliver a stable environment to the users.
Follow and maintain IT security awareness and best practices by understanding security principles as they pertain to environments supported in order to deliver secure solutions to customers.
Utilize system management and monitoring tools and incident tracking systems by following documentation and standards to detect incidents, take corrective actions, and determine root cause.
Monitor changes and resolve any incidents by responding to problems as they occur, by reviewing all processing and output of the newly implemented solution, and by proactively ensuring the solution works successfully in order to satisfy the customer requirements and to provide a smooth transition to the new solution.
Lead and provide direction to technical team for all of the above tasks by reviewing work and adherence to institutional standards and guidelines in order to deliver high quality maintenance and troubleshooting to the customers.
PROJECT COLLABORATION AND LIFECYCLE PARTICIPATION
Implement changes by adhering to the change management policies and procedures for any given project to communicate to all parties the nature, significance, and risk factors of the solution.
Lead effort to develop RFP's by engaging project team members in the process in order to develop well defined requirements to potential vendors for proposed solutions.
Evaluate vendor proposals by reviewing requirements for the product to select the most appropriate vendor.
Lead vendors, consultants, and inside Enterprise groups in developing applications by meeting with the team on a regular basis to deliver quality products to customers.
Lead scheduled project team meetings by attending all meeting to provide input to the project team.
Author and maintain documentation by writing audience-appropriate materials to serve as technical and/or end user reference.
Lead technical team in test planning, test scenario construction, and test sessions appropriate to the changes being implemented by following testing guidelines to ensure all delivered solutions work as expected and errors are handled in a meaningful way.
Review test results and corrections to all changes by following institutional and departmental testing standards to ensure all delivered solutions work as expected and errors are handled in a meaningful way.
Participate in Institutional and Departmental committees and initiatives.
Lead and provide direction to technical team for all of the above tasks by reviewing work and adherence to institutional standards and guidelines to ensure collaboration and communication with team members and customers.
Describe the Specific Devices, Software, Projects for Which the Position is Responsible:
SSO tools included but not limited to: Imprivata, Microsoft Windows Hello, CA's SiteMinder, Shibboleth, and Active Directory Federated Services. MFA tools include but are not limited to the use of certificates, tokens and one-time passwords. Integrating Hopkins SSO and MFA with existing applications, cloud and Software as a Service (SaaS) is highly complex.
Architect and engineer the F5 Local Traffic Manager, Access Policy Manager Application Security Manger modules. Collaborate with Network and Systems Administrators and other support teams for provisioning of Virtual Machines and/or installation of physical devices within the data center, and to ensure secure communication paths for traffic and remote management. Develop iRules and apply rules within the F5 appliances, troubleshoot and debug services using problem determination tools and logs provided with the F5 appliances.
Describe scale/size of area, project and/or system supported:
Desktop SSO is used by over 50,000 systems and Web SSO is used by over 100,000 users. MFA is needed to help secure Hopkins credentials and may be used by all faculty, staff and students. Securing Hopkins credentials which are used 24 x 7 from around the world is highly complex.
Additional experience can be substituted for education.
Six years related experience.
Must have solid understanding of Windows and Linux Desktops and Servers.
Additional education can be substituted for experience.
Equivalency Formula: 30 undergraduate degree credits or 18 graduate degree credits = 1 year of experience. For jobs where equivalency is permitted, up to two years of non-related college coursework may be applied towards the total minimum education/experience required for the respective job.
Preferred Job Qualifications:
Knowledge of Desktop and Web SSO. MFA using tokens, certificates, and one-time passwords. Ideal candidate will have knowledge of the following: Imprivata, Windows Hello, and Azure MFA.
Knowledge, Skills, & Abilities (KSA's):
Must demonstrate strong critical thinking and analytical reasoning skills.
Ability to work on multiple priorities effectively.
Ability to prioritize conflicting demands.
Ability to execute assigned project tasks within established schedule.
Ability to work collaboratively in a team environment.
Ability to communicate effectively in the service of users and colleagues.
Writes and communicates clearly and concisely.
Possesses sound documentation skills.
Ability to maintain confidentiality
Must demonstrate exemplary customer service skills.
Any Specific Physical Requirements for the Job:
Ability to lift 50 pounds.
Classified Title: Sr. Systems Engineer Role/Level/Range: ATP/04/PF Starting Salary Range: Commensurate with Experience Employee group: Full Time Schedule: Monday-Friday, 8:30am-5:00pm Exempt Status: Exempt Location: 02-MD:Mount Washington Campus Department name: 10003718-IT@JH Enterprise Directory and Messaging Personnel area: University Administration
The successful candidate(s) for this position will be subject to a pre-employment background check.
If you are interested in applying for employment with The Johns Hopkins University and require special assistance or accommodation during any part of the pre-employment process, please contact the HR Business Services Office at email@example.com. For TTY users, call via Maryland Relay or dial 711.
The following additional provisions may apply depending on which campus you will work. Your recruiter will advise accordingly.
During the Influenza ("the flu") season, as a condition of employment, The Johns Hopkins Institutions require all employees who provide ongoing services to patients or work in patient care or clinical care areas to have an annual influenza vaccination or possess an approved medical or religious exception. Failure to meet this requirement may result in termination of employment.
The pre-employment physical for positions in clinical areas, laboratories, working with research subjects, or involving community contact requires documentation of immune status against Rubella (German measles), Rubeola (Measles), Mumps, Varicella (chickenpox), Hepatitis B and documentation of having received the Tdap (Tetanus, diphtheria, pertussis) vaccination. This may include documentation of having two (2) MMR vaccines; two (2) Varicella vaccines; or antibody status to these diseases from laboratory testing. Blood tests for immunities to these diseases are ordinarily included in the pre-employment physical exam except for those employees who provide results of blood tests or immunization documentation from their own health care providers. Any vaccinations required for these diseases will be given at no cost in our Occupational Health office.
Equal Opportunity Employer Note: Job Postings are updated daily and remain online until filled.
Johns Hopkins University remains committed to its founding principle, that education for all students should be grounded in exploration and discovery. Hopkins students are challenged not just to learn but also to advance learning itself. Critical thinking, problem solving, creativity, and entrepreneurship are all encouraged and nourished in this unique educational environment. After more than 130 years, Johns Hopkins remains a world leader in both teaching and research. Faculty members and their research colleagues at the university's Applied Physics Laboratory have each year since 1979 won Johns Hopkins more federal research and development funding than any other university. The university has nine academic divisions and campuses throughout the Baltimore-Washington area. The Krieger School of Arts and Sciences, the Whiting School of Engineering, the School of Education and the Carey Business School are based at the Homewood campus in northern Baltimore. The schools of Medicine, Public Health, and Nursing share a campus in east Baltimore with The Johns Hopkins Hospital. The Peabody Institute, a leading professional school of music, is located on Mount Vernon Place in downtown Bal...timore. The Paul H. Nitze School of Advanced International Studies is located in Washington's Dupont Circle area.