55-082 Network/System Administrator III

55-082 Network/System Administrator III Hanscom AFB, MA Salary: $134,245.65 Minimum Clearance Requirement: Current clearance as defined in the Task Order, with eligibility for access to Special Access Program Information Mandatory Experience: 5–7 years related experience; 2+ years SAP experience Position Overview The primary function of the Network/System Administrator III is to organize, install, and support a government organization’s computer systems, including local area networks (LANs), wide area networks (WANs), network segments, intranets, and other data communication systems. This position will also include helping architect, design, and analyze network models. The Network/System Administrator III will participate in decisions regarding future hardware or software purchases to upgrade the organization’s infrastructure. This position may also be called upon to provide technical support to computer users and assist in solving users’ technical problems. This position will support activities within Special Access Programs (SAPs) supporting Department of Defense (DoD) agencies, such as HQ Air Force, Office of the Secretary of Defense (OSD), and Military Compartments efforts. The position will provide day-to-day support for Collateral, Sensitive Compartmented Information (SCI), and Special Access Program (SAP) activities. Requirements Performance shall include: • Able to perform self-sustaining work with little to no oversight • Lead IT operations team on day-to-day management and operations of networks and implement capabilities vetted through Cybersecurity, ISSE, and higher headquarters to maintain JSIG/RMF Authority to Operate and maintain Continuous Monitoring tools and processes • Manage COTS and GOTS products to collect, display, and remediate a variety of automated system security and system operations/performance functions and metrics • Assist during security assessments of servers, network devices, and security appliances • Assist during security assessments with regard to accuracy and efficiency • Assist with creation of operational Operations and Maintenance (O&M) checklists to maintain the service, including daily, weekly, monthly, and yearly O&M checklists • Build Tactics, Techniques, and Processes (TTPs) and Standard Operating Processes (SOPs) associated with service checklists • Manage and operate monitoring tools/capabilities with the enterprise security information and event management (SIEM) and create/tailor complex event alarms/rules and summary reports • Execute cybersecurity operations procedures for day-to-day network management, operations, and maintenance • Monitor/analyze output of cybersecurity-related tools for reportable security incidents and residual risk • Assist in analyzing technical risk, upon request, of emerging cybersecurity tools and processes • Work as part of a security incident response team as needed • Assist ISSM/ISSO/ISSE with the integration and development of new techniques to improve Confidentiality, Integrity, and Availability for networks/systems operating at various classification levels • Demonstrate advanced technical competency in one or more supported platforms, including Microsoft Windows Server, Active Directory, Red Hat Enterprise Linux servers, MS Hyper-V, VMWare, ESx, Xen Hypervisors, enterprise networking/firewalls/intrusion detection/prevention systems, forensic analysis/vulnerability assessment, Group Policy management and configuration, scripting, BMC Footprints, WSUS, Lumension, BitLocker, SQL Server 2012, TomCat, IIS, Windows Server 2012R2/2016, Windows 10, Red Hat 6.5, and Microsoft Office • Support toolkits, SIEMs, LogRhythm, ACAS/Nessus/SCAP, mandatory/role-based access control concepts such as SE Linux extensions to RHEL, PitBull, AppArmor, and Sentris, video teleconferencing/VOIP, Oracle/MS SQL database security, and Apache/IIS Web server security Experience • 5–7 years related experience required • 2+ years Special Access Program (SAP) experience required Education • Bachelor’s degree in a related area or equivalent experience • Four years of equivalent experience may be considered in lieu of degree Certifications • Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Technician Level III within six months of the date of hire Security Clearance • Current clearance as defined in the Task Order • Eligibility for access to Special Access Program Information • Willingness to submit to a Counterintelligence polygraph Other Requirements • Thorough knowledge of Microsoft Windows desktop and server operating systems, Microsoft Exchange Server, and, as needed, RHEL operating systems administration and associated hardware • Experience with effective communication and collaboration in a high-performance team environment • Group Policy design and configuration • Working knowledge of CISCO network and switching and virtualization technologies • Working knowledge of virtualization as it applies to user environments, operating systems, and network appliances • Working knowledge of Local Area Network (LAN) and Wide Area Network (WAN) technologies and data backup technologies • Working knowledge of communication security (COMSEC) policies and integration • Working knowledge of Risk Management Framework, Common Criteria, and System Security Policy as they relate to assessments and authorization • Working knowledge and current relevant experience with PL2, PL3, and PL4 network environments/systems • Working knowledge of WSUS and/or YUM patch deployment methodologies • Must be familiar with DoD policy as it applies to implementing and executing system and network administration • Working knowledge of Risk Management Framework and how to apply it to network/information system environments • Must be able to regularly lift up to 50 lbs.