EchoStar has an exciting opportunity for a Cleared Systems Administrator in our Hughes Network Systems division. This position will be located at our headquarters in Germantown, MD.
Responsibilities:
- Patch vulnerabilities on multiple devices and operating systems (OS) (servers, workstations, firewalls) on established periodicity coordinated with security staff, engineering, and operations.
- Upgrade applications of existing common software such as Microsoft Office, Adobe Reader, etc.
- Experience with ACAS (Assured Compliance Assessment Solution) and STIG (Security Technical Implementation Guide) compliance remediation or experience with equivalent security requirements and tools.
- Contribute to documentation for security plans leading to an Authority to Operate (ATO)
- Sample documentation: Security Control Traceability Matrix (SRTM), System Security Plans (SSP), Risk Assessment Reports (RAR), Contingency Plans, Media Control Plans, Incident Response Plans, and related documents supporting system audits and reviews.
- Provide Continuous Monitoring (ConMon) and respond to assigned Plan Of Action and Milestone (POA&M) tasks working with the Information Systems security Officer (ISSO).
- Participate in system testing and tabletop exercises.
- Monitor systems for anomalous activity (after-hours use, attempted privileged command execution, data exfiltration, etc.) and perform appropriate incident response.
- Configuration Management: document system details regarding OS, configurations, connections, software, and hardware installed.
- Support peripherals such as printers and scanners.
Basic Requirements:
- BS Degree in Computer Science, Information Technology, related field; or combination of education and experience
- Must be a U.S. Person (e.g., U.S. citizen, lawful permanent resident, U.S. National or a protected individual under 8 U.S.C 1324b(a)(3)) as position requires access to U.S. export restricted materials.
- Must hold and maintain a U.S. government Top Secret security clearance.
- 5+ years of experience with the Risk Management Framework (RMF), National Industrial Security Program Operating Manual (NISPOM), or Joint Special Access Program (SAP) Implementation Guide (JSIG)
- Level 1 IAT (A+, CE, CCNA-Security, CND, Network+, CE, OR SSCP)
Preferred Qualifications:
- Experience in system reporting tools such as Cherwell, ServiceNow, JIRA/Confluence. Familiar with technical and administrative security policies.
- Experienced in DoD/Federal security Governance, Risk, and Compliance (GRC).
- Experienced with NIST regulations.
- Experience with security tools throughout the System Development Life Cycle (SDLC) including as examples: Tenable/Nessus, Splunk, vCenter/VMWare, Anti-virus protection (McAfee/Trellix), Windows OS (Workstation and Server), Linux (RHEL OS) and related tools for Defense in Depth
- Experience working in a customer centric environment.
- Evaluate vendor products and recommend hardware and software purchases, coordinating installation and ensuring effective backup and recovery strategies
Will be eligible for discretionary bonus, with funding based on company performance.
#H
#LI-EM1