As the System Security Engineer, this individual will provide systems administration for enterprise EverFox solution. This involves operating and maintaining CSfC-compliant solutions according to NSA, DoD, and customer standards. As the system security engineer, this individual will manage the Everfox Control Center, ensuring compliance with DoD STIGs and IAVAs.

Pay: $130,000-$140,000

Responsibilities:

• Implements, operates and maintains commercial Solutions for Classified (CSfC) compliant solutions that meet NSA, DoD, and customer requirements
• Monitors system health, troubleshoots technical issues, provides support, designs server configurations, and collaborates with cross-functional teams
• Writes standardized system documentation, including configuration guides, test procedures, test results, and training materials
• Installs, configures, and maintains EverFox software
• Analyzes and resolves problems associated with the operating system’s servers, hardware, applications, and software
• Monitors systems performance and ensures compliance with security standards. Monitors everyday systems, evaluates availability of all server resources, and performs all activities for EverFox software
• Assists with configuring and deploying all virtual machines and installs and provides backup to all configuration procedures
• Maintains and monitors all patch releases, designs various patch installation strategies, and maintains all systems according to program standards
• Provides Tier 2 and 3 troubleshooting support, interfacing with the end users and other technical teams from a service support perspective
• Supports the building and maintenance of the image of CDI terminals
• Maintains patches and baseline
• Supports the local applications in the CDI image
• Manages and maintains system infrastructure for CSfC systems and ensuring security and compliance within classified environment
• Manages and troubleshoots Windows Active Directory, Group Policy Objects (GPOs), and Domain Name System (DNS)
• Manages Microsoft and LINUX operating systems Servers, both legacy and current
• Manages and troubleshoots messaging protocols and operations with Microsoft and LINUX
• Writes scripts in PowerShell, LUA, etc. Experience with SCCM/SCOM
• Manages system backups and administer virtual environments
• Provides support in the deployment and configuration of servers and workstations
• Deploys vendor updates, security patches, STIGS, IAVA’s, etc.
• Performs systems performance diagnoses and scalability assessment activities
• Applies industry best practices in compliance with security as well as NSA/DISA guidelines
• Develops and maintains documentation, such as topology diagrams, circuit/equipment inventories and configuration reports
• Authors Engineering Design Packages including detailed implementation project plans and procedures.
• Configures software and hardware components to meet NSA CSfC, NIAP, and DoD requirements
• Designs, develops, implements, tests and maintains complex secure communications networks
• Configures and manages PKI Certificate Authorities for CSfC solutions
• Configures Certificate Authority Systems (ISC CertAgent/MS Windows Server/Red Hat Certificate systems)
• Documents configuration, test procedure/reports, results, and training materials
• Performs special projects and other duties as assigned

Required Qualifications/Education and Experience:

• Must have an active Top Secret Security Clearance with SCI eligibility
• Possesses a B.S. in Cybersecurity and Information Assurance and 7+ years of DoD systems administration experience
• Minimum of five (5) years relevant experience working with security platforms in a service provider environment
• Must be DoD 8140 certified at the IAT-II / IAM-II level. Security+ or Cloud+ or GICSP or SSCP or GSEC or CySA+ Certification
• Experience configuring and maintaining CA servers and managing PKI, along with familiarity with the Everfox Control Center
• Experience with Commercial Solutions for Classified (CSfC) programs, solutions, and architectures
• Knowledge of network traffic flow, risk management, VPN security, cyber defense policies, threats, and vulnerabilities
• Experience with configuring systems components, including servers and endpoints
• Possess the flexibility to work in both a team environment as well as independently
• Ability to communicate with technical and business staff alike
• Knowledge of commonly used ports and protocols
• Ability to develop technical documentation
• Ability to review and develop configuration guides and other customer training deliverables

Preferred Qualifications/Education and Experience.

• Bachelor's degree in engineering degree or information systems degree. Experience can be substituted in lieu of degree.
• Desired qualifications may include experience in a Cyber Security Operations Center (SOC).
• Experience with RHEL and the ability to learn new technologies like Everfox TTC may be preferred.
• Professional level certifications in either Cisco, Linux, Aruba, Palo Alto or VMware.
• Experience with commercial Public Key Infrastructure (PKI) and encryption algorithms.
• Professional level certifications in either Cisco, Red Hat, Linux, Aruba, Palo Alto.

Benefits:

• Medical/ Dental/ Vision
• Life insurance and AD&D
• Flexible Spending
• Accident, Critical Illness and Hospital Indemnity coverage
• 401(k) and ROTH retirement options and company match
• Pet Insurance
• Identity Theft and Fraud Protection coverage