Principal System Support Specialist


Our Infrastructure Services Windows SecOPS team is looking for a new team member!
Infrastructure Operations team runs and maintains the global hosting infrastructure and its components within the ITS data centers as well as providing countries with remote infrastructure management and support.

Our goal is to ensure that the organization has the right knowledge and capabilities to deliver 1st and 2nd level support for infrastructure, keeping the infrastructure up and running 24x7x365

The Principal System Support Specialist is responsible for design, develop, build, deploy, maiantain and resolve issues related to Windows servers security and PAM (Privilege Account Management) infrastructure.

About the team:

As a System Support person in Infrastructure Security Operation team, we support, maintain and monitor the datacenter infrastructure (Prague and Kuala Lumpur) 24 x 7 and ensure that underlying infrastructure (hardware, operating systems, databases, and middleware) availability meets the agreed SLAs and requirements.

What you will do/You will be:

• Supporting Windows servers security infrastructure by realizing the security operations concepts, providing continuous support on security hardening solutions and future projects,
• Supporting PAM (Privilege Account Management) infrastructure (end-to-end), onboarding users and privileged identities into PAM,
• Documenting the best practices and adhering to formal standards and processes,
• Auditing the infrastructure and providing business stakeholders and asset owners with necessary data to for audit purposes,
• Provide on call support 24/7
• Continuously learning on the latest new technologies based on the customer or ITS needs,
• Providing awareness/knowledge transfer sessions to other teams and departments, asset/service owners, business stakeholders,
• We emphasize teamwork hence provide advice and guidance/knowledge transfer to junior colleagues

Applications you will use:

• Windows server OS,
• Active Directory,
• PAM/PAM endpoint

You should have:

• Minimum 5 years’ experience in an Enterprise IT environment, Minimum 3 years in similar roles,
• Knowledge of Windows server security configuration
• Hands on experience with modern PAM solutions (PAM infrastructure deployment, product life-cycle management, device/application/accounts onboarding/decommissioning, access policy deployment, secrets management, PAM infrastructure APIs),
• Proficiency in authorization of access to resources and authentication of users, devices, applications and/or workloads,
• Knowledge in PowerShell scripting (maintaining own PS scripts and functions for day-to-day Windows server administration, remote sessions, AD, data gathering, APIs),
• Understanding of segregation of roles/duties, Least Privileges principals, JIT (Just In Time access), JEA (Just Enough Administration),
• Experience with MFA implementation and support, Application security assessment, application security hardening,
• Knowledge of current threat landscape, malware operation, Threat & IoC, incidents response management
• Fluent English, verbal, and written communication skills,
• Ability to work independently and self-motivation,
• Creative problem-solving skills and ability to work conceptually,
• Customer-centric and end-users focused,
• Knowledge of cybersecurity best practices.

Nice to have:

• Zero Trust and automation mindset,
• Industry recognized security certification and/or relevant vendor certification is an advantage,
• Hybrid model operations, Azure AD integration, Azure cloud security,
• GIT (managing scripts development and deployment),
• PowerBI (data gathering/collections, reports development, presentation),
• Some understanding of middleware/DB security (IIS, MS SQL), DevOPS security hardening (Docker/Kubernetes/Jenkins/Openshift), Containers security


DHL Information Services (Europe) s.r.o.
Dominika Formanová


Nastavení cookies