Cyber Security / Systems Administrator

About The Position

Requirements

• Active DoD Top Secret security clearance, with the ability and willingness to obtain SCI access.
• 5+ years of relevant experience
• Completed Bachelors degree in a technical field such as Cyber Security, Systems Engineering, IT, etc.
• Security+ Certification Required
• Familiarity with NISPOM and Risk Management Framework
• Ability to identify system design and operational vulnerabilities, and make recommendations to address security deficient areas

Nice To Haves

• Active TS/SCI Security Clearance
• Demonstrated knowledge of infrastructure automation and provisioning (e.g. Chef, Puppet, Ansible, etc.)
• Demonstrated knowledge of containerized virtualization deployment and orchestration (e.g. Docker, Kubernetes, etc.)
• Demonstrated experience with agile software/system development
• Demonstrated experience delivering operational mission systems
• Experience with security trade studies and use case development
• Experience deriving security controls/requirements to provide technical criteria to system developers for successful implementation within the software/system development lifecycle
• Hands-on experience with and ability to direct system administrators to securely configure systems assets per customer security standards, community best practices and/or benchmarks
• Draft Security Test and Evaluation (ST&E) plans with the ability to trace security controls to security test cases and to demonstrate functional security compliance
• Experience leading and conducting security testing activities using automated vulnerability assessment tools (i.e. Nessus, OpenVAS, SCC, etc.) and ST&E plan to verify security requirement compliance
• Experience drafting and updating security artifacts such as: CTP/ST&E, SSP, Security CONOP, security architecture views, user guides, POA&M, PPS, PTI/PTT, SCTM, ISA, RAR/RMM etc.
• Experience securing virtualization technologies to include virtual software, machines and appliances
• Demonstrated leadership and project execution skills with ability to work under pressure and meet deadlines
• Excellent written and oral communication skills, to include leading security presentations and briefings to executive, management, and/or program personnel

Responsibilities

• Serve as a POC/Liason between contract personnel and the ISSOs across multiple enclaves
• Provide guidance and assistance to system engineers in support of the Risk Management Framework (RMF) Assessment and Authorization (A&A) process to ensure systems successfully achieve an Authority to Operate (ATO)
• Ensure that security related efforts/tasks are understood
• Assisted with IA Training, Awareness and Incident Response
• Provide primary systems administration on security toolsets and applications on both Windows and Red Hat Enterprise Linux based systems
• Conducted scap scans, stig checks and analyzes results
• Utilized Symantec and Logrhythm
• Track patches, new security risks, and vendor errata updates for applicability to the sites
• Work with PO and Scrum Master to ensure help create and execute required tickets for security related task execution
• Create/Drive PTI/PTT packages
• Lead POAM efforts with ISSOs
• Coordinate/drive POAM efforts with TLOSS personnel
• Lead RMF/ATO efforts
• Ensure security baselines are kept in sync to include patching and scanning efforts
• Support information system Self Inspection, Auditing, and Continuous Monitoring
• Provide support as needed to other HW/SW teams on security requirements

Benefits

• medical
• dental
• vision
• paid time off
• 401(k)
• life insurance
• flexible work schedules
• holidays