Requisition #:SYSTE003858

Job Title: System Admin Linux

Location: 27410 Hot Patch Road Quantico, Virginia 22134 (Hybrid)

Clearance Level: Active DoD - Secret

DoD IAT III or IAM II Certification. (Candidate has 180 days to attain if they have a lower level 8570 certificate).

Related RHEL Certification.

The successful candidate will use their Red Hat Linux experience to support the Customer in the design and implementation of their Assured Compliance Assessment Solution (ACAS) for the Customer's Government Enterprise Networks (GEN). The Linux Administrator will operate and maintain the infrastructure for the ACAS solution to support network and appliance scanning and configuration assessments and provide training to operators and Information Assurance personnel to maintain and operate the ACAS tool functionality.

Install and patch operating systems, application, and document Department Information Systems Agency (DISA) Security Technical Implementation Guidelines (STIGs) applicable to each network environment for all ACAS implementations.

Assesses current ACAS implementations for each of the GEN networks and recommend changes.

Document the steps required to design the ACAS solution for each of the GEN networks to include IP address, Fully Qualified Domain Name, and physical location of each component.

Create network diagrams of the designs with Microsoft Visio (include list of hardware and software requirements).

Maintains the Nessus scanners and Passive Vulnerability Scanner's (PVS) connectivity with the associated Security Center (SC).

Develop and/or update the Standard Operating Procedures (SOP) to support each of the client ACAS solutions documented within the SharePoint portal.

Provide reports as necessary.

Build Linux Server from DISA provided ISO image.

DoD 8570 IAT III or IAM II (CASP+, CCNP Security, CISA, GSE, SCNA, CISSP [or Associate], CAP, GSLC, CISM, GCED, GCIH, CISO, or HCISPP). Candidate has 180 days to attain if they have a lower level 8570 certificate.

Related RHEL certification

Knowledge and experience with RedHat Linux. Possesses understanding and experience with common cybersecurity toolsets and processes to include STIGs, CAS, IAVA Management and Implementation, and Operation Order (OPORD)/Fragmentary Order (FRAGO) support.

3+ years' experience in supporting, configuring, administering Linux.

3+ (RHEL) operating system in an enterprise environment RHEL 7.x or greater.

Experience with virtualized environments (vSphere, ESXI).

Red Hat Enterprise Linux (RHEL) experience.

Must be able to troubleshoot SSH connection issues.

Good understanding of LVM Partitioning, Disk space and troubleshooting Systems related issues.

Familiar with VMware and vSphere.

Understanding of SSL/TLS Certificate and OS hardening.

Strong understanding of Network configuration and troubleshooting (nmtui, nmcli, service, netstat, grep, top command).

Understanding of patching and RPM package management is a must.

Be able to troubleshoot Kernel Panic, Root and Grub password Reset, & Firewall configurations.

Familiar with Ansible, Ansible-playbook and ansible roles.

Understanding on Redhat Satellite Version 6.12 or higher.

Familiar with Active Directory Concepts, LDAP, or Kerberos.

Familiar with migration from RHEL7 to RHEL8 using Leapp utility.

Build or configure new YUM Repositories for patching purposes.

Familiar with AWS/AZURE Cloud for future projects.

Scripting (Nessus Attack Scripting Language (NASL), Python, Bash) .

Engineering experience with Nessus Manager and Monitor Implementation.

Able to spin new instance on the cloud from a given AMI or Launch Template.

Understand the concept of Security Groups, VPC, IAM, Autoscaling, Load Balancer Container architecture.

Contractor site with 0%-10% travel possible. Possible off-hours work to support releases and outages. General office environment. Work is generally sedentary in nature but may require standing and walking for up to 10% of the time. The working environment is generally favorable. Lighting and temperature are adequate, and there are not hazardous or unpleasant conditions caused by noise, dust, etc. Work is generally performed within an office environment, with standard office equipment available.

Hybrid, Once Team is fully staffed, Govt is expected to grant 1 day/week of telework. Situational telework is also allowed on a case-by-case basis. Personnel must have accounts and be operationally functional before they can telework (about 2 months from start date).

Sedentary - 10 lbs. Maximum lifting, occasional lift/carry of small articles. Some occasional walking or standing may be required. Jobs are sedentary if walking and standing are required only occasionally, and all other sedentary criteria are met.

Stand or Sit; Walk; Repetitive Motion; Use Hands / Fingers to Handle or Feel; Stoop, Kneel, Crouch, or Crawl; See; Push or Pull; Climb (stairs, ladders) or Balance (ascend / descend, work atop, traverse).