Start Date: Immediate
Our client is a service-disabled, veteran-owned small business (SDVOSB) delivering exceptional strategy and technology integration services to the U.S. Federal Government. We support several Department of Defense (DoD) and Federal Agencies across the CONUS.
OVERVIEW
Full-time/Permanent Employee
Location: (Hybrid Remote) in Chantilly, VA
EXPANSIA is looking for a Sr. Linux Engineer to support our customer to provide a common set of required EIT services across 187 bases to implement a consistent, high-quality experience for users across all mission environments and enable USAF to transition focus from network operations to mission operations.
The proposed salary range for this position is $137,000 – $186,500. There are a host of factors that can influence final salary including, but not limited to, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, geographic location, education, and certifications. Our employees value the flexibility EXPANSIA allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our unique mix of benefits options is designed to support and protect employees and their families. Employment benefits include health and wellness programs, income protection, paid leave and retirement and savings.
RESPONSIBILITIES- Provide analysis, design, development, and integration of hardware, software, human-machine interfaces, and all system level requirements and functional objectives to provide an integrated EIT solution while considering the limitations imposed by practicality, regulation, safety, and cost. Develops integrated system test requirement, strategies, devices, and systems. Ensures highest level of Cybersecurity while balancing user needs. Initiates (does not wait for others) to identify key areas of improvement relating to anything Systems related.
- Install new software releases, system upgrades, evaluating and installing patches and resolve software related problems. Perform system backups and recovery. Maintain data files and monitors system configuration to ensure data and security integrity.
- Possesses and applies expertise across key tasks and high impact assignments. Plans and leads major assignments. Evaluates performance results and recommends major changes affecting short-term project growth and success. Functions as an expert across multiple project assignments. May supervise, mentor or task lead others.
- Flexibility and adaptability are ways of life here on the EITaaS team, so if you are comfortable breaking out of the mold and have a passion for learning new technologies, while applying your existing experience, then this position may be exactly what you are looking for.
- Although this is a high-pace environment, be assured you’d be joining a high-tech people-oriented team and overall community that’s just as flexible as we’re hoping you to be.
KEY QUALIFICATIONS- Years of Experience: 10 years of relevant experience required.
- Clearance: Active Secret Clearance
- Education: Bachelor’s Degree in relevant field required
KEY KNOWLEDGE, SKILLS, AND ABILITIES (KSA) - Security+ CE Certification (or other IAT Level II or III Certification)
- 10 years’ cumulative experience with systems administration in Linux environments (RHCE equivalence) or Windows Server environments (MS Security Engineer/Solution Architect equivalence)
- Hands-on experience installing, configuring, securing, integrating, upgrading and troubleshooting SE Linux/CentOS (prefer some hands-on experience with AlmaLinux or Rocky Linux too) – preferably in VM environments
- Experience with ADFS (Active Directory Federation Services) Integration
- Experience with Azure Cloud Computing (Experience with ServiceNow, DevOps, Azure Boards, Azure Pipelines and Azure Repos are a major plus)
- Hands-on experience working with CIL and/or M4 macros to develop new custom security policies for Linux; developing custom modules in SE Linux; and developing custom Ansible playbooks and roles from the ground up
- Experience with securing systems by following STIGs, best practices, and government/compliance requirements (such as NIST 800-53, NIST 800-27, NIST 800-137, FISMA, FEDRAMP), and negotiating/working-with IA personnel to arrive at sensible and effective solutions
- Experience with customer interactions, including presenting, answering questions, proactively resolving issues
- Cumulative experience with leading team efforts - understanding needs of individuals not just tasks
PREFERRED ADDITIONAL QUALIFICATIONS - Experience integrating/understanding multi-factor authentication (MFA, 2MFA)
- Experience with installing/configuring/troubleshooting Security tools (i.e., Windows, Azure, Linux) beyond default settings meeting highest level government standards relating to data, applications, OS, networking, infrastructure, etc.
- Experience with VMWare (implementing, managing, configuring)
- Experience with understanding IT Security concepts and implementations
- Experience with enhance data protection and compliance (such as OpenSSL, Keystores, Azure Key Vault, Cyphers)
- Experience with log management, network firewalls, and testing. (Being able to track down the root cause of a service/application failure through the use of logs and CLI-based tools (Log-based Analysis, not just guessing))
- Experience with STIG hardening and participating in audit reviews relating to it
- Experience with researching, analyzing, documenting and presenting Analysis of Alternatives (AoA) for key product solutions
- Experience creating and analyzing PowerShell, Ansible, Bash, JAVA based, YAML and/or Python scripts – basically you need to know how to connect things for automation needs
- Experience with Agile/Kanban, Git/GitHub
- Experience integrating, securing, and understanding the following Microsoft platform services (both in Windows OS and in Azure Cloud): Active Directory Domain Services (ADDS), Active Directory Certificate Services (ADCS), Windows AD-integrated PKI, Single Sign On (SSO) implementation
- Some experience with any or all of these products or technologies: MS SQL, Red Hat Satellite, Nagios, McAfee ePO, Tanium, IPSEC, ForeScout, CyberArk, Layer7 PAM, SailPoint, Ansible, Puppet, Chef, Splunk, AMQP (RabbitMQ), Nessus suit, Swimlane, Qualys, SCCM, BigFix, MDM solutions, JIRA (again, nice to have, not required)
- Relevant Technical and/or Security Certifications (e.g., Network +, Security+, Microsoft, AWS, Azure, VMware, CISSP, CCNA, CCDA, CCNA-Security, etc.). *May be asked to obtain upon starting
- Familiarity with common cybersecurity tools is greatly desired. Our mission to support the US Air Force in their cybersecurity needs, inclusive of identifying and preventing culprits from accessing systems/data that they shouldn’t is a high priority focus for our team
EXPANSIA is an Equal Opportunity Employer – Females/Minorities/Protected Veterans/Individuals with Disabilities