Job description

We are seeking a Senior System Administration Security Lead with Top- Secret Clearance to work in our downtown Colorado location. This position is on site and does require a Top-secret or higher clearance. Our client was founded to radically improve spacecraft affordability and reliability, transforming, and enabling next- generation space mission operations worldwide. Today, they are one of the most innovative aerospace companies, specializing in end-to-end customer solutions and the rapid production of spacecraft platforms. Their complete Space Segment Solution includes spacecraft production, payload integration, system integration & test, launch services, ground segment services, and mission operations, enabling customers to leverage the existing technology solutions to get to orbit rapidly and responsively. We’re looking to expand our team across the board. We are seeking a Senior System Administration Security Lead whose responsibilities include leading compliance with government requirements pertaining to computer systems processing classified information. The selected candidate will support classified system efforts and will perform tasks that include hardware/software configuration management (to include baseline configuration), risk assessments/vulnerability assessments, testing and documenting security controls, and ensuring overall cybersecurity compliance. The ideal candidate will have advanced system administration experience spanning an array of different platforms/systems and will take initiative in collaboration between cross-functional teams. The candidate must be comfortable collaborating with stakeholders to meet system security requirements. Responsibilities: • Provide guidance and technical inputs for ground assets in support of classified systems • Assist with the deployment and configuration of collection services and tools • Collaborate with stakeholders to integrate cyber requirements into space assets throughout production and operation phases • Continuously evaluate/maintain system baseline in compliance with accreditation requirement • Guide system boundary security configurations to include patch management, vulnerability remediation, implementing STIGs, and any additional system security configurations as needed • Implement systems administration tasks associated with cybersecurity control in accordance with applicable regulatory guidance and contractual requirements • Lead the system validation and partnership in remediation of networked servers, routers, and switches to ensure they comply with security policy, procedures, and technical requirements • Establish secured host baseline (SHB) images to be applied to multiple operating systems and DISA STIGs • Perform vulnerability testing using system test tools (i.e., ACAS/Nessus, Security Content Automation Protocol (SCAP), and/or Security Technical Implementation Guides (STIGs)) and remediate flaws within directed timeframe • Perform backups and configuration of backup repository IAW system monitoring plans • Identify and develop authorization boundary diagrams, architecture diagrams, and hardware and software inventories in coordination with network team • Manage/lead system administration team’s compliance with Continuous Monitoring (ConMon) • Ensure that system administration team’s hardware, software, data, and facility resources are archived, sanitized, or disposed of in a manner consistent with system security plans and requirements • Manage the classified system change management process, and assess system impact of proposed changes • Report security-related concerns and changes that may affect the system • Provide leadership for proactive system administration support • Other duties as deemed appropriate for this position Required Qualifications: • Bachelor’s Degree in Information Technology, Information Systems Security, Cybersecurity, or related field or 14 years of directly related experience • Minimum 8 years' experience in a systems administration position for the U.S. government or a U.S. government contractor • Knowledge of CNSSI 1253, NIST 800 Series (primarily 800-53, 800-53A, 800-171), and the Risk Management Framework • Security+ certification or equivalent • Currently possess a Top-Secret clearance or higher • Proficient in Microsoft Windows and Linux operating systems • Experience in managing system administration workloads • Supervision experience • Experience using DISA Security Technical Implementation Guides (STIGs), Security Requirements Guide (SRGs) and Security Content Automation Protocol (SCAP) to securely configure network-enabled devices Requirements/Preferred Experience: • Experience with anti-virus, Vulnerability Assessment, HIDS/NIDS, McAfee HBSS, Multi Factor Authentication (MFA), and Security Incident and Event Management (SIEM) and centralized auditing tools (Splunk preferred) • Experience in computer hardware and software operating systems and application solutions in both stand-alone and LAN/WAN configurations • Ability to remediate security vulnerabilities by implementing solutions on networked devices and applications through malware identification, containment, and eradication • Independently capable of identifying system vulnerabilities • Experience in conducting software due diligence with COTS and GOTS solutions • Knowledge of IT security principles and methods (e.g., firewalls, demilitarized zones, encryption) • Knowledge of PKI, multi-factor authentication, and entitlements management • Working knowledge of virtualization technologies • Working knowledge of scripting/programming languages (PowerShell, Python, BASH) • Operational knowledge of switches/routers/firewalls • Strong communication and documentation skills • Positive, self-motivated individual who can complete tasks independently

Requirements