ClearanceJobs
Senior System Administration Security Lead
We are seeking a Senior System Administration Security Lead with Top-Secret Clearance to work in our downtown Colorado location. The position requires onsite presence and a Top-secret or higher clearance.
Base pay range $120,000.00/yr - $140,000.00/yr
Overview Our client specializes in end-to-end customer solutions and rapid production of spacecraft platforms, enabling next‑generation space mission operations worldwide.
Responsibilities
Provide guidance and technical inputs for ground assets in support of classified systems.
Assist with deployment and configuration of collection services and tools.
Collaborate with stakeholders to integrate cyber requirements into space assets throughout production and operation phases.
Continuously evaluate and maintain system baseline in compliance with accreditation requirements.
Guide system boundary security configurations to include patch management, vulnerability remediation, implementing STIGs, and any additional system security configurations as needed.
Implement systems administration tasks associated with cybersecurity control in accordance with applicable regulatory guidance and contractual requirements.
Lead system validation and partnership in remediation of networked servers, routers, and switches to ensure compliance with security policy, procedures, and technical requirements.
Establish secured host baseline (SHB) images to be applied to multiple operating systems and DISA STIGs.
Perform vulnerability testing using ACAS/Nessus, Security Content Automation Protocol (SCAP), and/or Security Technical Implementation Guides (STIGs) and remediate flaws within directed timeframe.
Perform backups and configuration of backup repository in accordance with system monitoring plans.
Identify and develop authorization boundary diagrams, architecture diagrams, and hardware and software inventories in coordination with network team.
Manage/lead system administration team’s compliance with Continuous Monitoring (ConMon).
Ensure that system administration team’s hardware, software, data, and facility resources are archived, sanitized, or disposed of in a manner consistent with system security plans and requirements.
Manage the classified system change management process, and assess system impact of proposed changes.
Report security-related concerns and changes that may affect the system.
Provide leadership for proactive system administration support.
Other duties as deemed appropriate for this position.
Required Qualifications
Bachelor’s Degree in Information Technology, Information Systems Security, Cybersecurity, or related field or 14 years of directly related experience.
Minimum 8 years’ experience in a systems administration position for the U.S. government or a U.S. government contractor.
Knowledge of CNSSI 1253, NIST 800 Series (primarily 800‑53, 800‑53A, 800‑171), and the Risk Management Framework.
Currently possess a Top-Secret clearance or higher.
Proficient in Microsoft Windows and Linux operating systems.
Experience managing system administration workloads.
Experience using DISA Security Technical Implementation Guides (STIGs), Security Requirements Guide (SRGs) and Security Content Automation Protocol (SCAP) to securely configure network-enabled devices.
Preferred Experience
Experience with anti-virus, vulnerability assessment, HIDS/NIDS, McAfee HBSS, multi‑factor authentication (MFA), SIEM, and centralized auditing tools (Splunk preferred).
Experience in computer hardware and software operating systems and application solutions in both stand‑alone and LAN/WAN configurations.
Ability to remediate security vulnerabilities by implementing solutions on networked devices and applications through malware identification, containment, and eradication.
Independently capable of identifying system vulnerabilities.
Experience conducting software due diligence with COTS and GOTS solutions.
Knowledge of IT security principles and methods (e.g., firewalls, demilitarized zones, encryption).
Knowledge of PKI, MFA, and entitlements management.
Working knowledge of virtualization technologies.
Working knowledge of scripting/programming languages (PowerShell, Python, Bash).
Operational knowledge of switches/routers/firewalls.
Strong communication and documentation skills.
Positive, self‑motivated individual who can complete tasks independently.
#J-18808-Ljbffr
Base pay range $120,000.00/yr - $140,000.00/yr
Overview Our client specializes in end-to-end customer solutions and rapid production of spacecraft platforms, enabling next‑generation space mission operations worldwide.
Responsibilities
Provide guidance and technical inputs for ground assets in support of classified systems.
Assist with deployment and configuration of collection services and tools.
Collaborate with stakeholders to integrate cyber requirements into space assets throughout production and operation phases.
Continuously evaluate and maintain system baseline in compliance with accreditation requirements.
Guide system boundary security configurations to include patch management, vulnerability remediation, implementing STIGs, and any additional system security configurations as needed.
Implement systems administration tasks associated with cybersecurity control in accordance with applicable regulatory guidance and contractual requirements.
Lead system validation and partnership in remediation of networked servers, routers, and switches to ensure compliance with security policy, procedures, and technical requirements.
Establish secured host baseline (SHB) images to be applied to multiple operating systems and DISA STIGs.
Perform vulnerability testing using ACAS/Nessus, Security Content Automation Protocol (SCAP), and/or Security Technical Implementation Guides (STIGs) and remediate flaws within directed timeframe.
Perform backups and configuration of backup repository in accordance with system monitoring plans.
Identify and develop authorization boundary diagrams, architecture diagrams, and hardware and software inventories in coordination with network team.
Manage/lead system administration team’s compliance with Continuous Monitoring (ConMon).
Ensure that system administration team’s hardware, software, data, and facility resources are archived, sanitized, or disposed of in a manner consistent with system security plans and requirements.
Manage the classified system change management process, and assess system impact of proposed changes.
Report security-related concerns and changes that may affect the system.
Provide leadership for proactive system administration support.
Other duties as deemed appropriate for this position.
Required Qualifications
Bachelor’s Degree in Information Technology, Information Systems Security, Cybersecurity, or related field or 14 years of directly related experience.
Minimum 8 years’ experience in a systems administration position for the U.S. government or a U.S. government contractor.
Knowledge of CNSSI 1253, NIST 800 Series (primarily 800‑53, 800‑53A, 800‑171), and the Risk Management Framework.
Currently possess a Top-Secret clearance or higher.
Proficient in Microsoft Windows and Linux operating systems.
Experience managing system administration workloads.
Experience using DISA Security Technical Implementation Guides (STIGs), Security Requirements Guide (SRGs) and Security Content Automation Protocol (SCAP) to securely configure network-enabled devices.
Preferred Experience
Experience with anti-virus, vulnerability assessment, HIDS/NIDS, McAfee HBSS, multi‑factor authentication (MFA), SIEM, and centralized auditing tools (Splunk preferred).
Experience in computer hardware and software operating systems and application solutions in both stand‑alone and LAN/WAN configurations.
Ability to remediate security vulnerabilities by implementing solutions on networked devices and applications through malware identification, containment, and eradication.
Independently capable of identifying system vulnerabilities.
Experience conducting software due diligence with COTS and GOTS solutions.
Knowledge of IT security principles and methods (e.g., firewalls, demilitarized zones, encryption).
Knowledge of PKI, MFA, and entitlements management.
Working knowledge of virtualization technologies.
Working knowledge of scripting/programming languages (PowerShell, Python, Bash).
Operational knowledge of switches/routers/firewalls.
Strong communication and documentation skills.
Positive, self‑motivated individual who can complete tasks independently.
#J-18808-Ljbffr