Cybersecurity System Administrator - DMV

M.C. Dean, Inc•Washington, DC

1d•Onsite

About The Position

M.C. Dean is seeking a highly skilled Cybersecurity System Administrator to support a secure operational technology environment by integrating advanced system administration with proactive cybersecurity operations. This dual-role position requires an individual with both hands-on technical expertise in managing modern enterprise IT systems and a deep understanding of federal cybersecurity frameworks and risk management. Primary Responsibilities: System Administration Duties Install, configure, upgrade, and maintain enterprise systems including: Windows Server 2019/2022, Windows 10, RHEL 7/8 VMware ESXi / vSAN infrastructure Web browsers, Adobe Acrobat, and other desktop applications Manage virtual machines and storage in a VMware vSAN environment. Administer Microsoft SCCM, WSUS, Active Directory (AD), Group Policy (GPO), and perform system patching and image deployment. Integrate and maintain vendor systems and third-party applications within a Windows ecosystem. Operate and manage jump (bastion) hosts for network segregation and secure remote access. Coordinate with development and support teams to test system hardware/software and optimize performance. Provide Tier 1–3 support, troubleshoot incidents, and maintain operational resilience via regular backups and recovery plans. Load PKI certificates and maintain change management documentation and incident logs. Cybersecurity Operations Serve as the Information System Security Manager (ISSM) for all assigned systems. Monitor networks for real-time threat indicators; investigate and respond to security events. Implement and operate cybersecurity tools such as ACAS, NESSUS, SCAP, and STIG Checklists. Conduct and remediate vulnerability scans; follow DISA STIGs and IAVA compliance. Manage POA&Ms, deviation lists, and ensure systems maintain Authority to Operate (ATO). Provide FRCS cybersecurity engineering support and continuous monitoring in accordance with DoD and Army standards. Perform penetration testing, threat analysis, and security risk assessments in lab/test environments. Collaborate with stakeholders to improve system hardening, respond to ICS-CERT alerts, and mitigate CAT 1/2/3 vulnerabilities. Compliance & Documentation: Maintain up-to-date security artifacts, plans, and policies as required under RMF, NIST SP 800-series, FISMA, and FedRAMP. Load documentation and scan data into the A&A Asset Manager. Facilitate FISMA-required annual reviews (e.g., Contingency Plans, Security Controls). Support system reauthorization activities, including 5-day on-site assessments if required. Educate end users on security best practices and threat awareness. Work Conditions & Travel: Primarily on-site; periodic travel may be required for assessments or installations. Participation in on-site assessments up to 5 days in duration. Occasional after-hours support for mission-critical operations.

Requirements

Active TS/SCI w/ polygraph clearance is required.
3+ Years of Experience with a Master's Degree in Information Technology, Risk Management, Cybersecurity
5+ Years of Experience with a Bachelor's Degree in Information Technology, Risk Management, Cybersecurity
8+ Years of Experience with an Associate's Degree in Information Technology, Risk Management, Cybersecurity
11+ Years with a High School Diploma
Ability to process and operate application software, to include word-processing, spreadsheets and databases.
Must meet the Department of Defense Directive (DoDD) 8570.01 “Information Assurance Training, Certification, and Workforce Management” and DoD 8570-M “Information Assurance Workforce Improvement Program” requirements for IAM (Information Assurance Manager) Level 2, IAT (Information Assurance Technical) Level 2, OR IASAE (Information Assurance System Architect and Engineer) Level 2.
Documented training in the following areas: network infrastructure (Cisco), Microsoft Windows.
Experience working on government and/commercial projects implementing cybersecurity requirements in a variety of industrial control systems (e.g., building management, electronic security, fire alarm/mass notification, electrical distribution, power management, etc.).
DoD 8140 IAT Level II certification (e.g., Security+ CE, CCNA Security, CySA+).
TS/SCI clearance is required.
5+ years of experience in DoD RMF cybersecurity and system administration.
Experience with IA tools and processes: STIGs, Nessus, SCAP, ACAS, vulnerability management.
Demonstrated knowledge of: Windows Server/Client, RHEL, VMware Cybersecurity frameworks: RMF, NIST SP 800-53, FISMA Security monitoring, firewall, and encryption toolsets.
3+ Years of Experience with a Master's Degree in Information Technology, Risk Management, Cybersecurity
5+ Years of Experience with a Bachelor's Degree in Information Technology, Risk Management, Cybersecurity
8+ Years of Experience with an Associate's Degree in Information Technology, Risk Management, Cybersecurity
11+ Years with a High School Diploma or GED

Nice To Haves

Bachelor’s degree in Computer Science, Information Systems, or related technical field.
Familiarity with federal cybersecurity policy, FRCS/ICS security operations, and DoD IA compliance.
5+ years of experience working with industry and government agencies on the design of ICS platforms and integrated ICS systems
Strongly preferred: Meet the Department of Defense Directive (DoDD) 8570.01 “Information Assurance Training, Certification, and Workforce Management” and DoD 8570-M “Information Assurance Workforce Improvement Program” requirements for IAM (Information Assurance Manager) Level 3, IAT (Information Assurance Technical) Level 3, OR IASAE (Information Assurance System Architect and Engineer) Level 3
Familiarity with various industry ICS products
Experience implementing a variety of security assessment tools
Implementation of DoD Security Technical Implementation Guides (STIGs)
Security Readiness Review (SRR) Tools (scripts and OVAL Benchmarks, ACAS, Wireshark)
Excellent understanding of the DoD RMF lifecycle and NIST 800-53 controls implementation
Strong written and verbal communication skills Ability to coordinate with and support multiple team members, vendors, and government customers
Ability to identify, maintain, and troubleshoot HMI components
Ability to identify, maintain, and troubleshoot control network components
Ability to interpret drawings both mechanical and electrical
Ability to identify, maintain, and utilize SCADA systems and KPI's
Ability to train others with lesser skills
Ability to access all levels and areas of the facility
Working knowledge of EMS/SCADA or other operational control systems.
Knowledge of SCADA protocols like Modbus, IEC 60870-5-101 or 104, IEC 61850 and DNP3 and other major SCADA protocols
Awareness of NIST Special Publication 800-82, Guide to Industrial Control Systems (ICS) Security and UFC 4-010-06 Unified Facilities Criteria (UFC) Cybersecurity of Facility
Awareness of DoD Risk Management Framework (RMF) process.
Possession of excellent customer service and organization skills.
Possession of excellent oral and written communication skills.
Certified Information Systems Security Professional (CISSP)
Certified Ethical Hacker (CEH)
Certified SCADA Security Architect (CSSA) Related Control Systems.

Responsibilities

Conduct ICS/SCADA system inventories following guidance including, but not limited to U.S. Army ICS Inventory Methodology and Unified Facilities Criteria (UFC) 4-010-06, Cybersecurity of Facility-Related Control Systems.
Assist in the development and verification of documentation necessary to complete the DoD RMF assessment and authorization process.
Implement Implementation of DoD Security Technical Implementation Guides (STIGs) on traditional Information Technology (IT) and Operational Technology (OT) systems.
Conduct vulnerability scanning and document system vulnerabilities.
Work in a team environment alongside other cybersecurity engineers and Risk Management Framework (RMF) analysts.