Cyber / Systems Security Engineering Specialist

About The Position

Requirements

• 10+ years experience in DoD/DoD-adjacent IT, system administration, and/or cybersecurity support
• Strong Linux administration background (RHEL preferred) and demonstrated STIG implementation experience
• Experience with ACAS vulnerability scanning and remediation workflows
• Working knowledge of enterprise networking fundamentals (routing/switching, VLANs, firewall policy concepts)
• Experience supporting virtualization (VMware ESXi/vSphere) and backup/recovery
• A current SSBI or Federal Investigative Standard Tier 5 (T5) or Tier 5 Reinvestigation (T5R) within the last 5 years. A final DoD Secret or Top Secret clearance. Eligibility for Top Secret in accordance with Intelligence Community Directive (ICD) 704 and Special Access Program (SAP) in accordance with SAP Nomination Policy (SAPNP) with no disqualifying security issues that will deem a candidate ineligible for access.

Nice To Haves

• Current Top Secret Clearance
• HBSS/ePO client product experience
• Familiarity with GitLab administration/secure CI/CD support in segmented environments
• Basic scripting/automation (Python, PowerShell, Ansible)
• Exposure to SSE/RMF processes and artifact preparation in program environments
• Experience supporting classified spaces and handling procedures

Responsibilities

• Execute cybersecurity compliance and engineering activities across lab, integration, and operational support environments (RDT&E and/or program networks as assigned).
• Perform vulnerability management activities including ACAS scanning coordination, patching support, remediation tracking, and security posture reporting.
• Apply DISA STIGs/SRGs for Windows, Linux, hypervisors, and network devices; support scripted evaluation where applicable.
• Support secure network segmentation concepts (VLANs, trunking, routing boundaries), firewall policy implementation/validation, and VPN administration (as directed).
• Administer and maintain Linux-based systems and services (RHEL/CentOS/Ubuntu), including directory integration and authentication controls where required.
• Support virtualization platforms (VMware ESXi/vCenter) and backup/recovery practices; help ensure availability and configuration compliance.
• Contribute to SSE/RMF-relevant artifacts and periodic submissions (plans, evidence, control implementations, scan outputs, POA&M support).
• Read/interpret relevant architecture/interface products WBBB/RIBS-P to ensure security controls align with system boundaries and intended behavior.