Linux Systems Administrator – Active Security Clearance Required

LLNL•Livermore, CA

9h•Onsite

About The Position

Lawrence Livermore National Laboratory (LLNL) is seeking a Linux Systems Administrator to provide advanced technical computer infrastructure support for Linux systems in a complex classified and unclassified computing environment. This role requires a subject matter expert in Linux infrastructure who will collaborate with customers and technical partners to define requirements and design computing solutions. The position involves leading the resolution of broad, complex system issues with long-term operational and security impact. This position is within the Information Technology Operations (ITO) Division of the Computing Directorate and requires full-time on-site presence. The role can be filled at either a standard or higher level based on the candidate's knowledge and experience.

Requirements

Active DOE Q clearance (or active Top Secret clearance) with the ability to obtain and maintain Sensitive Compartmented Information (SCI) access.
Ability to successfully complete a lifestyle polygraph as required by the sponsoring program.
Bachelor’s Degree in a Computer, Information Technology, or Engineering related field or equivalent combination of technical training and experience.
Strong understanding of networking fundamentals (TCP/IP, DNS, routing, firewalls) as they relate to Linux systems.
Broad and in-depth knowledge of and technical experience with Linux operating systems and related hardware.
Experience supporting diskless Linux infrastructure, including PXE booting and other Linux network boot or diskless boot technologies.
Experience applying security hardening standards and working in environments with strict security and compliance requirements.
Experience with complex troubleshooting.
Advanced ability to set priorities and independently resolve complex problems in a fast-paced environment.
Experience patching operating systems and performing installation of software releases.
Proficient interpersonal and communication (verbal and written) skills, with the ability to work independently and interact with a multi-disciplinary staff in a team environment.
Demonstrated experience architecting and deploying Linux infrastructure solutions for complex or high-security environments (additional requirement at 393.2 level).
Highly advanced knowledge of and significant technical experience with Linux operating systems, virtual environments, and/or related hardware (additional requirement at 393.2 level).
Significant experience working on cross-functional technical efforts involving systems, storage, network, and cybersecurity teams (additional requirement at 393.2 level).
Experience serving as a recognized subject matter expert, defining technical standards and best practices, and participating in technical reviews, audits, or customer engagements (additional requirement at 393.2 level).

Nice To Haves

Broad and in-depth knowledge and technical expertise with enterprise support tools for management, patching, backup or software distribution, Linux operating systems and computer security concepts and practices, and computer network hardware/software protocols and principles.
Experience with writing intermediate to advanced shell scripts.
Experience with one or more of the following technologies: SPLUNK, Tenable Security Scanner, Nessus, Puppet, Ansible or equivalent, Nagios, RHN Satellite, PKI authentications, Active Directory, Scripting, GIT, BIND, DNS, Perl, CSH/BASH, Docker, Podman, and other container technologies.

Responsibilities

Provide Tier 3 support for Linux and storage systems, including incident resolution, root cause analysis, and long-term remediation on classified and unclassified networks.
Architect, implement, and maintain diskless Linux environments, including PXE booting and related provisioning, identity and authentication services, such as FreeIPA or similar identity management solutions.
Implement technical standards for Linux system hardening in alignment with security policies, STIGs, CIS benchmarks, and other security baseline standards.
Monitor and optimize system performance, capacity planning, reliability engineering, and lifecycle management across Linux platforms.
Create and maintain documentation for system architectures, procedures, runbooks, and troubleshooting guides.
Collaborate with cybersecurity teams to support vulnerability management, incident response, and audit activities on both classified and unclassified systems.
Perform installation of software releases, patches of operating systems and utilities, third-party products, and open-source software.
Collaborate with management, customers, and team members to evaluate and recommend procurement of Linux hardware and software.
Perform other duties as assigned.
Act as an internal and external consultant in area of expertise, advising customers, peers, and management on Linux architecture, security, performance, and operational strategy (additional responsibility at 393.2 level).
Implement highly advanced designs, produced in collaboration with data scientists and infrastructure architects (additional responsibility at 393.2 level).
Lead advanced projects from concept through implementation, coordinating technical scope, milestones, risks, and customer communication (additional responsibility at 393.2 level).
Provide technical direction on complex operational and project-based work to team members (additional responsibility at 393.2 level).