DNS Administrator - Engineer

Work Schedule: Hybrid (3 days onsite, 2 days remote); M-F,

This highly technical role requires a candidate with a strong foundation in DNS and networking, as well as the ability to troubleshoot, document, and resolve complex issues effectively.

The DNS Administrator will play a critical role in ensuring the secure, efficient, and scalable operation of DNS systems in a large enterprise environment. Ideal candidate will possess comprehensive expertise in the engineering, implementation, and management of network monitoring, security, and performance systems. This position directly supports the Department of State on-site, providing network engineering services to over 100,000 customers globally.

• Design, configure, and manage DNS systems in a large enterprise environment.
• Ensure DNS architecture is secure, efficient, and scalable to meet enterprise needs.
• Troubleshoot DNS issues at both intra-network and inter-network levels, ensuring minimal downtime and optimal performance.

• Manage and optimize IP Address Management (IPAM), Dynamic Host Configuration Protocol (DHCP), and Network Time Protocol (NTP) systems.
• Support and maintain Active Directory integration with DNS to ensure seamless operations.

• Create detailed documentation of root causes for issues, including remediation and detection strategies.
• Maintain clear and accurate records of DNS configurations, changes, and system updates.
• Provide regular reports on DNS performance, security, and scalability to stakeholders.

• Work closely with technical subject matter experts (SMEs) to design and implement DNS solutions.
• Collaborate with network engineering and operations teams to ensure DNS systems align with enterprise architecture standards.
• Participate in technical working groups and contribute to advisory boards to support enterprise-wide initiatives.

• Minimum of 5 years of experience in IT, with a focus on DNS, IP, and related systems.
• Proven ability to debug complex, cross-system DNS and IP-related issues in a large enterprise environment.
• In-depth knowledge of DNS protocols and enterprise-level BIND DNS management.
• Familiarity with DNS server types, resource records, DNSSEC, and DNS communication within and outside the enterprise.
• Strong understanding of IP Address Management (IPAM), DHCP, and NTP.
• Knowledge of Active Directory and its integration with DNS.
• Understanding of TCP/IP subnetting, including: CIDR calculations, differentiating between public and private subnets, identifying hosts within a subnet.
• Basic knowledge of routing and routing protocols.
• Strong critical thinking and problem-solving skills.
• Ability to document root causes, remediation steps, and detection methods for issues within the specified technologies.

• Advanced knowledge of TCP/IP subnetting and routing protocols.
• Experience with DNSSEC implementation and management.
• Familiarity with enterprise-level DNS tools and technologies, such as Solar Winds, Infoblox, or similar platforms.
• Experience with scripting languages (e.g., Perl, Bash) to automate DNS and network tasks.
• Knowledge of cloud-based DNS solutions and integration with platforms like Microsoft Azure or AWS.

• Bachelor’s degree (BS) in a computer science, IT, or related field and a minimum of 5 years of experience in IT, with a focus on DNS, IP, and related systems; or Master’s degree (MS) and 3 years of experience.
• Additional years of experience may be accepted in lieu of a degree.

• Advanced certifications in networking or DNS-related fields (e.g., Cisco Certified Network Associate (CCNA), Microsoft Certified: Azure Administrator, or similar).
• Training in DNSSEC implementation and management.
• Familiarity with cloud-based DNS solutions and certifications in platforms like AWS or Microsoft Azure.

Required: U.S. Citizenship and ability to obtain a Top Secret clearance.
Preferred: Active Secret or Top Secret clearance.
Must obtain an interim Secret clearance prior to starting work.

• Administer and maintain DNS/DHCP/IPAM infrastructure using Infoblox Grid Manager.
• Configure and troubleshoot DNS zones, records, and DHCP scopes.
• Monitor DNS performance and security, including DNSSEC and RPZ (Response Policy Zones).
• Implement DNS redundancy, failover, and load balancing strategies.
• Collaborate with network, cybersecurity, and systems teams to ensure secure and reliable name resolution services.
• Maintain documentation of DNS architecture, configurations, and change management.
• Support incident response and root cause analysis for DNS-related issues.
• Ensure compliance with federal security standards (e.g., NIST, DISA STIGs).
• Participate in audits and vulnerability assessments related to DNS infrastructure.