The Advanced Solutions Group (ASG) at Leidos currently has an opening for a Linux System Administrator to work in our Beavercreek, Ohio office. This is an exciting opportunity to use your experience helping the Leidos corporate mission and work directly with the government.
The job of the Linux Administrator is to perform research along with develop; implement, test, and review hardware/software in order to comply with information security requirements (IAW DoD/NIST RMF). The Linux Administrator will implement technical security measures in order to protect information and prevent unauthorized access to company or government servers. In this role, the Linux Administrator will develop security measures, explain potential threats, implement security measures and monitor applications in order to meet DoD/NIST RMF requirements.
The Linux Administrator will also perform Network System Administrator roles for Unix/Linux and Windows Workstations and Servers. In addition to securely configuring Windows and Linux systems, this person will maintain a strong IT system security posture. The Linux Administrator will directly assist in security roles for both corporate and government system, showing initiative and attention to detail.
In addition to securing Windows and Linux systems, the Linux Administrator will install Windows Server 2012, Windows 2016 and Red Hat Enterprise Linux; Hardware and software and their respective operating systems. The Linux Administrator will be expected to build Windows and Red Hat Workstation and Servers from the ground up.
Roles and Responsibilities:
- Support the local program office's Information Assurance Security Team by installing and maintaining Linux Systems and respective operating systems and hardware. This person is expected to complete moderate and complex Linux assignments.
- This person will hardened Operating Systems, applications, and network infrastructure using Department of Defense Security Requirement Guides (SRGs), Security Technical Implementation Guides (STIGs), and Information Assurance Vulnerability Alerts (IAVA).
- Works closely with the local security to establish a system security engineering (SSE) process to plan, organize and manage efforts to achieve maximum system cybersecurity, cyber resiliency and survivability.
- Works with Windows 10 OS Workstations and Windows Server 2012/2016 along with Red Hat Enterprise Linux 6 and 7 both Workstations/Servers. Must have 5 years' experience with Red Hat Enterprise Linux hardware and driver installation which includes setting up single sign on of Red Hat Enterprise Linux in a Windows Active Directory environment.
- Must have Red Hat Enterprise Linux experience with setting up local RPM repositories in a non-internet environment.
- Running vulnerability scans for applications using various tools such as HP Fortify or SCAP; working with software engineers to analyze the report; and running vulnerability scans for operating systems and network infrastructure using Nessus and/or ACAS. Install and maintain McAfee EPO Server.
- Design, develop, integrate, test, implement, deploy and perform operations & maintenance (O&M) of tools for the automation of security testing in support of security certification and accreditation.
- Perform architectural design, integration, installation, configuration, testing, and administration of systems and capabilities to support the scanning, monitoring, and reporting of Information Assurance Vulnerability Alerts (IAVA)/Intelligence Community Vulnerability Alerts (ICVA)
- Assist with security assessments; provide design solutions; and provide guidance on new technologies. New technologies may include, but are not limited to, Cross Domain Solutions, Hardware, and various Operating Systems.
- Experience or understanding with information assurance, including accreditation security testing and evaluation.
- Experience implementing host based and network based scanning tools.
- Extensive experience in OS hardening; securing systems/software IAW DoD, and industry best practices; development of security controls, testing methodologies, and developing maintenance procedures for systems contained in isolated networks and Cross Domain Solutions.
- Bachelor's and 4+ years of related experience. Additional years' experience may be used in lieu of a degree.
- A minimum of five years' experience with Microsoft Server (2012R2) Windows client (10) and Linux, in a networked environment.
- Administrate modern Windows core server components (Group Policy, DNS, DHCP, Active Directory).
- Apply and remediate system lockdowns as mandated by DISA STIGS and related standards.
- Perform vulnerability analysis using ACAS (Tenable SecurityCenter and Nessus) and HBSS (McAfee ePO).
- Establish and maintain effective working relationships within the department, fellow contractors on the project, and Government personnel; interact appropriately with others in order to maintain a positive and productive work environment; maintain a regular and predictable work schedule.
- Must have a Secret security clearance.
- Certification demonstrating Windows Server competency is strongly desired.
- Experience in improving computer systems which are not following best practices or operate very inefficiently.
- Experience with surviving inspections or external audits of security compliance.
- Experience in maintaining computer networks without any Internet access.
- Current Security + Certified