Systems Administrator (Cyber Security Background)

SUMMARY

The Information Technology Cybersecurity Program Support Services (ITCPSS) Division  - Provides IHS (Indian Health Services) with responsive and reliable capabilities to assist in the agency’s implementation, operation, and optimization of IT security programs.

This position is responsible to ensure that information security requirements, compliance, and governance are incorporated into the enterprise architecture throughout the phases of the system lifecycle.  Providing support in the development, implementation, and ongoing administration of designated systems within government mandated regulations.

Responsibilities:

• Essential duties and responsibilities include the following.  Other duties may be assigned.
• Develop, reviews, updates system security plans of CDM tools and the interconnection agreements for existing and new security systems
• Maintaining and mature CUSTOMER-defined system-level security requirements and security specifications; CUSTOMER specified component products; appropriate metrics for product/system testing, evaluation, and assessment; and comprehensive system security planning and life cycle management.
• Performs reviews and audits of mixed Windows and Linux environments, including network devices, databases, web services, and enterprise applications, for system anomalies and user behaviors.
• Support enterprise security investments to meet parameters and specifications of the Enterprise Architecture (EA) section of OMB Exhibit 300, and provide technical support for Windows and Linux based CDM tools as assigned by the client.
• Provide technical support for the CDM tools as assigned by the client.  Assist the CDM effort through the management of applications (SysAdmin)
• Install, operate, maintain, manage and upgrade all DIS security tools and infrastructure as assigned by the client.
• System administration tasks include navigating within the system to define and follow requirements related to:
  • Licensing
  • Troubleshooting issues with security tools and hardware 
  • Creating, tracking, implementing, maintaining, and tuning all security tool rule sets
  • Managing users, roles, and authentication
  • Patching
  • Creating simple workflows using data-driven events and calculated fields
  • Setting up and triggering email notifications
  • Managing and confirming user access
  • Searching and reporting on data
  • Setting up and configuring custom views and dashboards
  • Importing data and setting up data feeds
  • Migrating an application from one environment to another
  • Configuring form fields and manipulating layout
  • Defining navigation menus
  • Creating advanced workflows, user accounts, groups, roles, records of permission fields, and business processes.
• Review system architecture during the initial phases of system development, evaluate planned security controls, and recommend approaches when appropriate.
• Respond to technical security issues as requested by the CISO and provide recommendations and/or solutions.
• Research and document standard security configurations for IT systems. Provide guidance and support for implementation at CUSTOMER facilities and its contracted partners.
• Research new security products and assist with development, evaluation and testing. Provide support for internal, non-standard applications requiring unique program environments.
• Provide technical security guidance to the CUSTOMER team in support of agency Identity and Access Management (IAM) initiatives.
• Maintain a test lab environment, including but not limited to: developing standard configurations; patch testing; security control testing; preparing installation/configuration guidance; and testing of new technology and products.
• Develop procedures to document, track, approve, and implement modifications to security appliance applications.
• Develop and maintain essential leadership dashboards based on customer request.
• Generate and customize required reports.
• Monitor system alerts and analyze the data.
• Assist in administering, deploying, and managing the additional data sources planned for implementation and analysis to reduce security attack surface.
• Develops policies and procedures to standardize security functions and eliminate potential vulnerabilities and threats. Oversees that business needs are being met during development.
• Responds quickly and effectively to incidents and customer requests, per SLA times, to resolution.
• Exercises multi-tasking skills by managing events in multiple systems, applications, and other priorities.
• Coordinates with NOSC Infrastructure Support team to maintain/troubleshoot defense perimeter and monitoring integrity.

Requirements:

• Critical Thinking – Knowledge of techniques and tools that promote effective analysis and the ability to determine the root cause of organizational problems and create alternative solutions that resolve the problems in the business's best interest.
• Problem Solving – Knowledge of approaches, tools, techniques for recognizing, anticipating, and resolving organizational, operational or process problems; ability to apply this knowledge appropriately to diverse situations.
• Effective Communications – Understanding effective communication concepts, tools and techniques; ability to effectively transmit, receive, and accurately interpret ideas, information, and needs through appropriate communication behaviors.
• Specialized knowledge and advanced skills in the tools, concepts, practices and procedures of security incident management, threat intelligence and continuous monitoring
• Knowledgeable of security-related processes and technologies with respect to Federal risk and compliance regulations best practices
• Ability to read, analyze, develop and interpret common information systems security documents
• Expert computer skills with advanced proficiency in a Windows and Linux based computer environment
• Excellent critical thinking skills with ability to identify, analyze and resolve problems / complex issues
• Excellent verbal and written communications skills with ability to prepare quality reports and effectively communicate / interact with a wide variety of technical and non-technical audiences (i.e., customers, team members, management and federal staff)
• Exceptional customer service skills with ability to respond to requests in a professional, helpful and timely manner
• Highly organized with ability to effectively manage multiple projects and priorities
• Ability to work in a fast-paced environment and to learn and apply new knowledge and techniques related to incident response and continuous monitoring capabilities
• Ability to effectively work both independently and in a team environment for the successful achievement of goals
• IHS Badged candidates are highly preferred
• IT Certifications such as Linux+, Server+, Network+, Security+ and Splunk are preferred
• Applicants with CISSP certifications will be highly considered
• Must be willing to respond to requests in a timely manner, and provide high level solutions to client requests

EEO Employer:

RELI Group is an Equal Employment Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, citizenship status, military status, protected veteran status, religion, creed, physical or mental disability, medical condition, marital status, sex, sexual orientation, gender, gender identity or expression, age, genetic information, or any other basis protected by law, ordinance, or regulation.

HUBZone:

We encourage all candidates who live in a HUBZone to apply.  You can check to see if your address is located in a HUBZone by accessing the SBA HUBZone Map.

The annual salary range for this position is $80,000 to $100,000. Actual compensation will depend on a range of factors, including but not limited to the individual’s skills, experience, qualifications, certifications, location, other business and organizational needs, and applicable employment laws. The estimate displayed represents the typical salary range for this position and is just one component of the total compensation package for employees. RELI Group provides a variety of additional benefits to its employees. For additional details on the benefits that RELI Group offers click here.