IT Security Administrator

Job opening ID
2186

Posting title
IT Security Administrator

Roles and responsibilities
12 month contract position
W2 with full benefits


Job Description:
Seeking an IT Security Engineer for the ESA IV program.  The ESA IV Security team supports multiple DOJ components (ATF, USTP, ATR). This position will primarily support the DOJ Antitrust Division (ATR) component.

This position will be focused on IT Security Operations. The candidate will be involved in a broad range of security tasks and issues supporting current day to day production operation as well as integration of new capabilities.  These tasks may include incident response, vulnerability management, Information Assurance analysis (Certification and Accreditation, audits, annual security plans), security assessment of current and new system and product capabilities.

For vulnerability management tasks, the candidate will utilize enterprise tools (e.g. SPLUNK, BigFix, Tenable Security Center, Nessus, DOJ SPDR) and their hands on system administration skills to identify, analyze and remediate issues.    The candidate will also need to use broad system security engineering skills to respond to real time production system issues/events or analyze new or enhancement capabilities.

The candidate may also support Information Assurance analysis tasks where, the candidate will respond to Certification and Accreditation tasks, audit tasks and other system security tests.  The candidate may act as the interface between auditors and system subject matter experts.  This will require the candidate to understand the target systems to appropriately decompose inquiries to actionable items for SMEs, then validate the SME responses.  The candidate should understand how to document system compliance with government security controls (e.g. 800-53, FISMA).

Clear verbal and written communication skills are essential.  This position also requires good project planning skills to identify how to meet schedules, identify dependencies, and identify risks and work arounds.

This position requires a security investigation completed by the ATR and the ATF to permit access to customer-sensitive information.


Required Skills:
•Must be a US Citizen or Green Card Holder
•Offer contingent on ability to successfully pass a background check and drug screen
•General knowledge of enterprise scale IT systems, architectures and components (servers, and virtualization, networking, security appliances,) particularly the system integration challenges balancing secure operations with operational need.
•Experience with Windows server and workstation administration including Active Directory. This should include ability to apply remote administration to evaluate and potentially correct system configurations, complete assessment and remediation of system hardening to DISA STIGs using security tools and command line (powershell) evaluation.
•Experience with Linux administration and security practices including system hardening DISA STIGs, scripting routine administrative tasks and data analysis, log management, user account management, installation and configuration of typical Linux security tools.
•Experience with basic network security practices and configuration
•Experience with one or more security tools (e.g. Nessus, Web Inspect, SPLUNK, DOJ SPDR) including running the tools, interpreting the data  and customizing queries and outputs.
•Experience with one or more enterprise configuration management tools (e.g. Big Fix, SCCM) including running the tools and customizing queries and outputs.
•Experience with supporting assessment of IT systems compliance with Federal IT Security standards (NIST 800-53, FISMA, CSAM))
•Ability to respond to security audits and compliance assessments including decomposing auditor requests to actionable items, compiling and presenting security audit artifacts
•Ability to evaluate IT system compliance with government and commercial security practices (e.g. DISA STIGS, SANS Top 25)
•Working knowledge of Federal Certification and Accreditation practices
•Solid communication and documentation skills

Desired Skills:
•Advanced Windows administration skills and knowledge of current and emerging Windows security features.
•Experience with enterprise security services (e.g. IDS, log aggregation, credential management, PKI, Certification Authority management, web/mail proxies and filters, end point integrity tools)
•Experience with security configuration of network devices (switches, routers, firewalls)
•Experience with enterprise mobile device security management (e.g. Airwatch)
•Familiarity with cloud computing and applicable security practices (e.g. FedRAMP, SAAS, IAAS)
•Experience with DOJ environment and tools
•Ability to recognize security risks, document risk, and clearly communicate findings and recommendations.
•Experience supporting Incident Response events
•Experience supporting review and certification of Physical Security elements of a facility


Number of positions
1

Location
Washington

State
District of Columbia