Senior Systems HBSS/MDE Administrator

At ValidaTek, we modernize and optimize IT services to solve some of the most critical challenges facing federal civilian and defense agencies. From customers to partners to top-talent employees, ValidaTek puts people first, empowering them to exceed expectations and transform government organizations. Our success starts and ends with our people, so we built a company where great people can do great things, with the resources and autonomy to make decisions that transform organizations. We operate as one team of diverse people, united by a passion for continuous growth and optimization. Our commitment to quality and performance optimization is the reason why our IT Service Projects and New Development Projects have been appraised at CMMI Maturity Level 5, positioning us as one of a handful of elite companies to receive the highest form of third-party validation. www.validatek.com

We are seeking a skilled Senior HBSS Administrator in Fort Belvoir, VA to join the I3TS team supporting DTRA. The I3TS program provides enterprise-wide IT support to enable DTRA’s Information Management & Technology Directorate (ITD) to consolidate, modernize, and continuously innovate the delivery of IT services and mission capabilities to DTRA’s internal and external mission partners operating in CONUS and OCONUS locations. The candidate will be responsible for ensuring the security and integrity of IT systems by running their Endpoint Security with experience in Trellix and Microsoft Defender. Administrator will also be responsible in applying Security Technical Implementation Guides (STIGs), managing system patches, and overseeing vulnerability management processes. This role supports federal clients in maintaining compliance with the Department of Defense (DoD) and other federal cybersecurity standards. The ideal candidate will be responsible for identifying points of vulnerability, non-compliance with established Information Assurance (IA) guidelines and regulations and recommend mitigation strategies, along with assisting users as needed in a classified computing environment. The selected candidate must be able to work independently as well as with a team of IT analysts, administrators, and engineers. The position requires excellent communications skills, both verbal and written. The candidate must be able to work in a high-energy environment and adapt to shifting priorities .

This role will provide continuous upkeep, monitoring, analysis, and response to Information System, network and security events using Endpoint Security tools such as Trellix and Microsoft Defender. STIG Application and Compliance: Implement and maintain Security Technical Implementation Guides (STIGs) on Endpoint Security Tools. Conduct regular STIG compliance checks using tools like SCAP Compliance Checker and STIG Viewer. Document STIG configurations and remediation actions to ensure audit readiness. Patching and System Updates: Manage and deploy operating systems and application patches in accordance with federal patch management policies. Coordinate patch schedules to minimize operational impact while meeting compliance deadlines. Verify patch deployment success and troubleshoot any issues arising from updates. System Hardening: Harden systems by applying best practices and federal security guidelines to reduce attack surfaces. Maintain configuration baselines and ensure systems adhere to DoD and NIST standards. Incident Response Support: Participates in internal/external security audits/inspections; performs risk assessments and Continuous Monitoring. Assist in identifying and responding to security incidents related to vulnerabilities or misconfigurations. Document incidents and contribute to after-action reports for continuous improvement. Collaboration and Reporting: Work closely with system administrators, engineering staff, and compliance teams to ensure cohesive security operations. Prepare detailed reports and briefings for federal clients on STIG compliance, patching status, and vulnerability management efforts. Develop, implement and enforce Information Security Policies and Procedures. Tool Utilization: Trellix and Microsoft Defender.

• BS bachelor’s degree with 10+ years’ of Information Assurance experience. Specific experience, education and training may be considered in lieu of degree.
• A Current DoD 8570 baseline certification
• Active HBSS 301 Certification
• Active DoD TS/SCI clearance
• Understanding of the Risk Management Framework (RMF), NIST, ICD, and CNSS standards.
• Familiarity with network technologies (LAN & WAN) and best practices within a classified environment to include crypto and key management
• STIG compliance, SCC and STIG Viewer experience, and ACAS expertise.
• Expert with Microsoft Windows, Linux, and system virtualization in a secure network environment.
• Must be able to work in a constantly changing regulatory environment with short-, mid-, and long-term timelines for remediating any non-compliance
• Must be able to work well within a team environment and able to adapt quickly to change
• Good writing and verbal presentation skills

 

Preferred Skills:

• Security+ or CISSP or equivalent
• DoD IS knowledge and experience
• Security hardening scripting/automation experience
• Ansible and or MECM experience
• Microsoft OS Certification (MCSE Win 7 or other)
• Linux certification (RHCSA, CompTIA Linux, LCFS/LCFE, etc.) 

USD $100,000.00/Yr.

USD $130,000.00/Yr.

Actual salary will be based on a variety of factors including but not limited to experience, geographic location, contract affordability, internal equity, education, and certifications. The upper end of the salary range may be reserved for individuals who have demonstrated tenure with the company, seniority, and proven excellent performance. This includes factors such as education, certifications, and extensive/unique experience beyond what is required.

ValidaTek is an Equal Opportunity Employer. All qualified applicants will be considered without regard to disability, protected veteran status, or any other status protected by federal, state, or local laws. Applicants who are selected for employment will be required to verify authorization to work in the United States. Offers of employment will be contingent upon passing a post-offer background check.