Systems Security Engineer (Infrastructure)
Huntsville, AL
Full Time Clearance required USD 115K - 214K * est.
AnaVation
Be Challenged and Make a Difference
In a world of technology, people make the difference. We believe if we invest in great people, then great things will happen. At AnaVation, we provide unmatched value to our customers and employees through innovative solutions and an engaging culture.
Description of Task to be Performed:Come join our growing team and make a difference every day! AnaVation is seeking an experienced Systems Security Engineer with a strong understanding of systems infrastructures to support a high priority cyber-focused work program. The successful candidate will have experience maintaining systems, networks, and infrastructure within federal government environments.
Key responsibilities include:· Serve as a subject matter expert for information technology environments.· Ensure team completes assigned duties such as system administration, identity and authentication, information system security accreditation, data storage and backup, physical infrastructure maintenance, automation development, and Authority to Operate (ATO) for applications and systems.· Enhance system operations through the design, development, and sustainment of new and existing system functionality to support configuration management, automated building, automated testing, automated deployment, and automated monitoring and notification.· Create and maintain bare-metal and virtual machines with the appropriate distribution of Operating Systems and network configuration, using configuration management tools and automation wherever appropriate.· Provision/configure the required software onto servers, such as web servers and databases.· Evaluate, improve, and maintain information security throughout the IT infrastructure.· Monitor and correct server issues and process for failures and performance bottlenecks.· Manage and monitor all installed systems and infrastructure.· Write and maintain custom scripts to increase system efficiency and lower the human intervention time on any tasks. Mentor junior staff and ensure quality of technical support and contractual deliverables. · Build new baselines with the appropriate security and access controls to include DISA STIGS and required security controls. · Create and maintain network infrastructure for both bare-metal and virtual machines with the appropriate LAN, WAN, vLAN, SDN, firewall and load balancer configurations, using both OEM and third-party tools that include virtual network tools (NSX) and services. · Provision/configure the required networking for servers and applications. · Evaluate, improve, and maintain information security throughout the data center network infrastructure. · Monitor and correct network issues and create recovery processes for failures and performance bottlenecks. · Provide real time alerts for network problem issues and implement proactive solutions for future problems to include re-design or tech refresh. · Write and maintain custom scripts to increase system efficiency and lower the human intervention time on any tasks, such as automated provisioning of addresses and VLANS with Infrastructure as a Service (IaaS). · Develop, modify, implement security policies, procedures, and guidelines to safeguard systems and maintain compliance with applicable federal guidelines for system and information security. · Support the management of systems security infrastructure, including firewalls, intrusion detection systems, and security software. · Conduct monthly vulnerability scans, monthly Plan of Action, and Milestones (POAM) creation, implement patches, ensure controls are reviewed, adhered to, and modified as needed. · Meet regularly with stakeholder teams to coordinate responses to the vulnerabilities and risks identified in the scans and POAMs. · Support Government personnel obtain and/or maintain system Authority to Operate (ATO) status requiring compliance with the requirements set by the customer. All activities and documentation will be managed in Risk Vision, Xacta, and/or a similar system. · Act as a subject matter expert for all information and system security related matters, advising Government personnel of best practices/solutions and documenting all aspects of the security program.
This position is on-site with our customer in Huntsville, Alabama.
This position requires an active Top Secret clearance and the ability to successfully pass a polygraph and obtain SCI accesses.
About AnaVation AnaVation is the leader in solving the most complex technical challenges for collection and processing in the U.S. Federal Intelligence Community. We are a US owned company headquartered in Chantilly, Virginia. We deliver groundbreaking research with advanced software and systems engineering that provides an information advantage to contribute to the mission and operational success of our customers. We offer complex challenges, a top-notch work environment, and a world-class, collaborative team.
If you want to grow your career and make a difference while doing it, AnaVation is the perfect fit for you!
In a world of technology, people make the difference. We believe if we invest in great people, then great things will happen. At AnaVation, we provide unmatched value to our customers and employees through innovative solutions and an engaging culture.
Description of Task to be Performed:Come join our growing team and make a difference every day! AnaVation is seeking an experienced Systems Security Engineer with a strong understanding of systems infrastructures to support a high priority cyber-focused work program. The successful candidate will have experience maintaining systems, networks, and infrastructure within federal government environments.
Key responsibilities include:· Serve as a subject matter expert for information technology environments.· Ensure team completes assigned duties such as system administration, identity and authentication, information system security accreditation, data storage and backup, physical infrastructure maintenance, automation development, and Authority to Operate (ATO) for applications and systems.· Enhance system operations through the design, development, and sustainment of new and existing system functionality to support configuration management, automated building, automated testing, automated deployment, and automated monitoring and notification.· Create and maintain bare-metal and virtual machines with the appropriate distribution of Operating Systems and network configuration, using configuration management tools and automation wherever appropriate.· Provision/configure the required software onto servers, such as web servers and databases.· Evaluate, improve, and maintain information security throughout the IT infrastructure.· Monitor and correct server issues and process for failures and performance bottlenecks.· Manage and monitor all installed systems and infrastructure.· Write and maintain custom scripts to increase system efficiency and lower the human intervention time on any tasks. Mentor junior staff and ensure quality of technical support and contractual deliverables. · Build new baselines with the appropriate security and access controls to include DISA STIGS and required security controls. · Create and maintain network infrastructure for both bare-metal and virtual machines with the appropriate LAN, WAN, vLAN, SDN, firewall and load balancer configurations, using both OEM and third-party tools that include virtual network tools (NSX) and services. · Provision/configure the required networking for servers and applications. · Evaluate, improve, and maintain information security throughout the data center network infrastructure. · Monitor and correct network issues and create recovery processes for failures and performance bottlenecks. · Provide real time alerts for network problem issues and implement proactive solutions for future problems to include re-design or tech refresh. · Write and maintain custom scripts to increase system efficiency and lower the human intervention time on any tasks, such as automated provisioning of addresses and VLANS with Infrastructure as a Service (IaaS). · Develop, modify, implement security policies, procedures, and guidelines to safeguard systems and maintain compliance with applicable federal guidelines for system and information security. · Support the management of systems security infrastructure, including firewalls, intrusion detection systems, and security software. · Conduct monthly vulnerability scans, monthly Plan of Action, and Milestones (POAM) creation, implement patches, ensure controls are reviewed, adhered to, and modified as needed. · Meet regularly with stakeholder teams to coordinate responses to the vulnerabilities and risks identified in the scans and POAMs. · Support Government personnel obtain and/or maintain system Authority to Operate (ATO) status requiring compliance with the requirements set by the customer. All activities and documentation will be managed in Risk Vision, Xacta, and/or a similar system. · Act as a subject matter expert for all information and system security related matters, advising Government personnel of best practices/solutions and documenting all aspects of the security program.
This position is on-site with our customer in Huntsville, Alabama.
This position requires an active Top Secret clearance and the ability to successfully pass a polygraph and obtain SCI accesses.
Required Qualifications:
- Education: PhD or Masters Degree in related field or equivalent combination of relevant experience and education (Masters degree strongly preferred)
- Experience: 9 years (minimum)
- Required:
- Must have experience with Microsoft Windows / Active Directory
- Must have understanding of NIST 800 series publications and Federal Information Security Management Act (FISMA) Compliance.
- Knowledge base in DNS, DHCP, LDAP, SMTP, NTP, and integration with infrastructure services to solve technical and functional issues.
- Possess proficient understanding of networks, storage, and LAN/WAN systems and applications as well as their dependencies.
Preferred Qualifications:
- Experience with VMWare vSphere 7
- Experience with CISO Networking
- Experience with Dell Server, and SAN Storage Hardware Experience
- Familiarity with System Accreditation and Authorization and federal government ATO Processes
- Experience Evaluating, Documenting, and Managing NIST 80053 Control Implementations
- Experience with Governance, Risk, and Compliance (GRC) Tools (such as RiskVision, Xacta and JCAM)
- Preferred Certifications:
- Microsoft Windows Server Hybrid Administrator Associate
- VMware Data Center Virtualization (VCPDCV)
- Cisco Certified Network Professional (CCNP)
- Certified Information Systems Security Professional (CISSP)
About AnaVation AnaVation is the leader in solving the most complex technical challenges for collection and processing in the U.S. Federal Intelligence Community. We are a US owned company headquartered in Chantilly, Virginia. We deliver groundbreaking research with advanced software and systems engineering that provides an information advantage to contribute to the mission and operational success of our customers. We offer complex challenges, a top-notch work environment, and a world-class, collaborative team.
If you want to grow your career and make a difference while doing it, AnaVation is the perfect fit for you!
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Category:
Security Engineering Jobs
Tags: Active Directory Automation CCNP CISO CISSP Clearance Compliance DISA DNS Firewalls FISMA Governance IaaS Intrusion detection IT infrastructure LDAP Monitoring NIST PhD Polygraph SMTP STIGs Top Secret Top Secret Clearance VMware Vulnerabilities Vulnerability scans Windows
Perks/benefits: 401(k) matching Career development Competitive pay Health care Insurance Medical leave Team events
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information Security Officer jobsInformation System Security Officer jobsSenior Security Analyst jobsSenior Cybersecurity Engineer jobsSenior Cloud Security Engineer jobsSystems Engineer jobsSystems Administrator jobsInformation Security Manager jobsSenior Information Security Analyst jobsSenior Network Security Engineer jobsIT Security Engineer jobsCyber Security Specialist jobsChief Information Security Officer jobsIT Security Analyst jobsSecurity Consultant jobsSecurity Specialist jobsInformation System Security Officer (ISSO) jobsSenior Cyber Security Engineer jobsInformation Systems Security Engineer jobsCyber Threat Intelligence Analyst jobsSenior Information Security Engineer jobsThreat Intelligence Analyst jobsCyber Security Architect jobsSecurity Operations Analyst jobsSenior Product Security Engineer jobs
GDPR jobsSaaS jobsEncryption jobsBash jobsSplunk jobsTop Secret jobsSQL jobsEDR jobsFinance jobsMalware jobsThreat detection jobsRMF jobsIDS jobsSDLC jobsForensics jobsIPS jobsITIL jobsTerraform jobsDocker jobsIntrusion detection jobsCompTIA jobsActive Directory jobsDoDD 8570 jobsSOC 2 jobsOWASP jobs
SAP jobsCRISC jobsGIAC jobsUNIX jobsSANS jobsHIPAA jobsAnsible jobsCCSP jobsOSCP jobsJira jobsBanking jobsSOX jobsVPN jobsTCP/IP jobsSOAR jobsIT infrastructure jobsMITRE ATT&CK jobsMachine Learning jobsJavaScript jobsClearance Required jobsVMware jobsData Analytics jobsIndustrial jobsCISO jobsNIST 800-53 jobs