Systems Engineer - with Active Top Secret / SCI Clearance

With Talent & Acquisition LLC in Los Angeles CA US

More jobs from Talent & Acquisition LLC

Posted on April 16, 2019

About this job

Job type: Full-time
Role: System Administrator


sysadmin, windows, sql-server

Job description

Job Description

Systems Engineer - with Active Top Secret / SCI permanent job in Los Angeles, CA (Malibu area).
EDUCATION DESIRED:Bachelor’s Degree in Computer Science, Engineering or a related technical discipline with 7 years of related experience in a network/system administration related support role. One of the following DoD approved certifications is required to meet the category/level IAT-2 (DoD 8570) requirement for this position. Security+, GSEC, SSCP, CCNA-Security, CISA, CISSP (or Associate), CASP, GSIH, or GCED.

  • Install, configure, and maintain Microsoft Active Directory domains and forests, including bare metal and virtual Windows server management
  • Schedule installations and upgrades and maintain them in accordance with established IT policies and procedures
  • Monitor and tune the system to achieve optimum performance levels and ensure workstation and server data integrity by evaluating, implementing, and managing appropriate software and hardware solutions
  • Ensure data and media recoverability by implementing a schedule of system backups and database archive operations, including supporting media management with internal methods and procedures or with offsite storage and retrieval services
  • Develop and promote standard operating procedures and conduct routine hardware and software audits of servers to ensure compliance with established standards, policies, and configuration guidelines.
  • Develop and maintain responsibility of a comprehensive operating system hardware and software configuration database or library of all supporting documentation
  • Manage and sustain domain replication, group policy objects, and domain organizational unit structure, including implementing enhancements proactively to monitor, alert, and report on the security and health of the operational Active Directory environment
  • Support complex client/server interaction problems and complex workstation issues such as registry based issues and application conflicts
  • Perform advanced network consulting, design, installation, and support
  • Manage/configure SAN (Storage Area Networks) and NAS (Network Attached Storage)
  • Design and install mid to large scale server infrastructure, troubleshooting complex problems between platforms and vendors
  • Assess complex network needs and recommend solutions
  • Experience with vulnerability scanning tools such as Nessus, MBSA, and SCAP
  • Maintain IA compliant system images and perform validation of IA compliant system image and configuration baselines
  • If required, assist in IT security incident response and documentation
  • Maintains Windows Systems comprised of servers and workstations
  • Administer installation of software, hardware, file system management, backups, process control, user administration, and device management
  • Responsible for resolving a wide variety of complex system failures, troubleshooting software, hardware, and network problems
  • Configure Windows desktop and server OS. Administer DNS and Active Directory and configure hardware and software for servers, RAIDs, storage arrays, and library storage devices
  • Provide operations and maintenance functions such as hard drive removal, print server configuration, performance optimization, and research and installation of current patches, and where applicable, install and support printers and storage peripherals
  • Manage group shares and home directories
  • Participate in technical exchanges with various stakeholders such as Program Managers, Executive Staff, and Research Staff members
  • Ensure compliance with computer security policies to include: NIST 800-53 controls, ICD 503, DAAPM v1.2, and JSIG rev 4
  • Perform technical security controls assessments and baseline validations to identify vulnerabilities and control deficiencies as part of continuous monitoring program
  • Participate in internal / external security audits/inspections


  • 7-10 years of directly related experience in systems administration and cyber security
  • Exchange 2010/2013/2016 server management
  • Windows server 2008/2012/2016 troubleshooting and management
  • Extensive experience working within a Windows environment
  • Experience upgrading, installing, patching, and hardening systems
  • Strong understanding of servers and experience with VMWare is strongly preferred
  • Manage and configure Windows server environments
  • Automate tasks to improve efficiency
  • Implement Active Directory and Local Group policies to enforce security requirements and standards
  • Position will require on call support and occasional night and weekend work
  • Proficient use and understanding of systems engineering concepts, principles, and theories
  • Proficient knowledge of cyber security technology and trends
  • Proficient ability in communicating and reporting issues, impacts, and corrective actions as they affect the cyber design and implementation
  • Regular contact with senior staff of internal security work groups
  • Ability to participate in or lead security work groups
  • Maintains contact with the external customers' security professionals
  • Linux-based server/infrastructure design, deployment, and administration (RHEL, CentOS, Fedora, Ubuntu)
  • Windows server & workstation administration
  • Security/vulnerability management (SCAP, STIGs, Nessus, McAfee ePO, XACTA)
  • Virtualization technologies (VMWare 6.5)
  • COTS integration and application support (FlexLM, MATLAB, Intel, Adobe, VNC, and more)
  • Networking, database, storage administration, (Cisco, Firewalls, VPNs, NetApp, SQL Server, MySQL, HP, Dell)
  • Strong knowledge in the configuration and maintenance of COMSEC equipment and procedures (KG-175D/G)
  • Scripting and automation (Shell, Bash, PowerShell, Python, Perl, VBScript)
  • Logging & analytics (Splunk, ELK Stack, RSA NetWitness, RSA Archer, BelManage)
  • Network monitoring & alerting (SolarWinds, Nagios)
  • 24x7 operational system and Tier 3 infrastructure support
  • Experience with ICD 503, JSIG rev 4, DAAPM v1.3, and DoD/IC system accreditation processes and requirements.
  • Proven ability to generate, edit and finalize SSPs
  • Experience in standing up SCIFS, SAPFs, and collateral areas from construction to accreditation
  • Proven ability in maintaining compliance with RMF accredited systems
  • Master’s Degree in Computer Science, or a related technical discipline with 15 years of related experience in a network/system administration related support role.

SPECIAL REQUIREMENTS (e.g. driver’s license, special tools or restrictions):Responsibilities sometimes require working evenings and weekends, and in some cases with little to no advance notice. This position requires that the applicant selected be a U.S. citizen. An active TS/SCI clearance with a CI polygraph is required. The applicant must also be willing to obtain and maintain a FSP. This job will also require up to 10% travel. As part of your role/function on the program; you will be granted privileged user access. Privileged Users are subject to greater scrutiny as a direct result of the significant responsibilities placed upon them. Please be aware that because of these critical duties; you will be subject to additional IT system monitoring; and supervisory evaluation to ensure continuous adherence to Privileged User processes and procedures. Privileged Users are subject to a zero tolerance policy for security violations.

Apply here