PRIMARY DUTIES & RESPONSIBILITIES:
- Leads the definition of system security requirements, including but not limited to the authorization boundary, security domains, classification of data, etc.
- Designs the security interfaces, security interconnections, and the trust relationship between system components and external systems.
- Implements system security designs using commercial-off-the-shelf (COTS), government-off-the-shelf (GOTS), and open-source hardware and software.
- Oversees the hardening and configuration of systems and system components in accordance with various Federal, Department of Defense (DoD), and Intelligence Community (IC) guidance.
- Manages security assessments of systems and system components using industry standard automated vulnerability scanning tools; vulnerability scanning tools may include Tenable Nessus and Security Content Automation Protocol (SCAP).
- Coordinates security assessments to identify security control failures and recommend corrective actions.
DESIRED SKILLS & REQUIREMENTS:
- Experience with or knowledge of DEVSECOPS Principles and ability to work and advise multiple cross-domain teams, manage conflict, and communicate both very technically and to a layman.
- Experience with RH enterprise application platform or RH Open Shift.
- Expert knowledge with Windows and RHEL administration, in-depth knowledge of RHEL and Windows-based distros. Familiarity with a multitude of OSS tools and utilities for managing, monitoring, and troubleshooting Linux infrastructure and networks.
- Certification as Red Hat OpenShift Administrator or otherwise experience in OpenShift configuration for applications to deploy and managing cluster operations.
- Experience with AWS as a Cloud Practitioner or Azure Solutions Architect or DevOps Engineer.
- Experience with Service Oriented Architecture, Microservice Architecture (MSA), or Representational State Transfer (REST) architecture(s).
- 2+ years experience configuring and managing F5 Firewall infrastructure in an enterprise environment.
- Experience managing/administering web server architecture including Apache Tomcat on a RHEL O/S.
- Experience working with two or more of the following development components: GIT, Helm, Fortify, SonarQube, Chef, Docker, OpenShift, Kubernetes, OKTA, F5 APM, and ADFS.
- Experience administering servers, backup operations, and systems monitoring in multiple and complex network server environments.
- Experience with business continuity and disaster recovery; install new/rebuild existing servers and configure hardware, peripherals, services, settings, directories, storage, etc.
- Experience with web technologies such as HTML4/5, XML, and SOAPUI.
- Experience with middleware technologies RabbitMQ, Java, and/or .NET runtime.
- Experience using configuration management systems such as GIT, Apache SVN, or AWS Code Commit.
- Experience with network analysis software such as SD Elements, Splunk, Sniffer, Wireshark, or Microsoft Network Monitor.
- Certifications in cybersecurity to include Certified Cloud Security Professional (CCSP) or Certified Information Systems Security Professional (CISSP).
- Experience with scripting PowerShell for cloud management, automating user group administration, or as part of a CI/CD pipeline.
#J-18808-Ljbffr