Linux Vulnerability Management Administrator (Cyber Security Analyst II)

Job Description

Mission Support and Test Services, LLC (MSTS) manages and operates the Nevada National Security Site (NNSS) for the U.S. National Nuclear Security Administration (NNSA). Our MISSION is to help ensure the security of the United States and its allies by providing high-hazard experimentation and incident response capabilities through operations, engineering, education, field, and integration services and by acting as environmental stewards to the Site’s Cold War legacy. Our VISION is to be the user site of choice for large-scale, high-hazard, national security experimentation, with premier facilities and capabilities below ground, on the ground, and in the air. (See NNSS.gov for our unique capabilities.) Our 2,750+ professional, craft, and support employees are called upon to innovate, collaborate, and deliver on some of the more difficult nuclear security challenges facing the world today.

• MSTS offers our full-time employees highly competitive salaries and benefits packages including medical, dental, and vision; both a pension and a 401k; paid time off and 96 hours of paid holidays; relocation (if located more than 75 miles from work location); tuition assistance and reimbursement; and more.
• MSTS is a limited liability company consisting of Honeywell International Inc. (Honeywell), Jacobs Engineering Group Inc. (Jacobs), and HII Nuclear Inc.
  
  

Responsibilities

MSTS is seeking a Linux Vulnerability Management Administrator who possesses the knowledge, skills, and abilities to manage and maintain Red Hat Linux servers in a large-scale enterprise environment.

Responsibilities

• Assist in researching, compiling, and analyzing technical data.
• Assist the ISSM and ISSOs with the execution of their assigned duties.
• Manage and maintain Red Hat Linux servers in a large-scale enterprise environment.
• Troubleshoot and resolve complex technical issues related to Linux servers, network infrastructure, and virtualization environments.
• Document system configurations, processes, and procedures to ensure knowledge sharing and best practices.
• Identify, report, and assist in the remediation of Cyber Security threats and vulnerabilities.
• Validate the functionality of security tools within the environment.
• Support the design/deployment/maintenance of new and existing security infrastructure capabilities.
• Conduct a variety of Cyber Security policy compliance tasks such as discovering unauthorized devices, conducting site surveys for non-compliance, and ensuring network access requirements are met.
• Scan network devices for vulnerabilities and configuration baseline compliance and report findings.
• Review Cyber Security threat information and assist with mitigating vulnerabilities identified.
• Use established standards, practices, and procedures as well as an increasing technical knowledge to solve problems and complete projects.
• Create documentation for change management, system security baselines, Standard Operating Procedures, and peer training.
• Contribute to an overall productive and respectful environment by providing excellent customer service and working in a positive, collegial manner. Maintain cooperative and respectful working relationships with the Cyber Security Staff, other divisions, and other customers.
  
  

Qualifications

• Bachelor’s degree or equivalent in a computer-related field and at least 2 years of experience in a related field.
• Demonstrate an understanding of principles, theories, standards, practices, protocols, and procedures used in Cyber Security and/or Linux Administration.
• Knowledge equivalent to Red Hat Certified System Administrator (RHCSA) or Linux Professional Institute (LPIC-2).
• Ability to use network scanning and vulnerability tools and interpret the results.
• Working level knowledge of networking, virtualization, Storage Area Networks (SANs), Cloud, and related technologies.
• Enterprise working knowledge of Red Hat Products such as:
• Red Hat Satellite Server
• Ansible Tower/Automation Platform
• Apache/Nginx Web Server
• Red Hat Identify Management (IdM)
• Tomcat/WebLogic Middleware
• HaProxy Load Balancers
• Bind DNS
• GitLab
• Docker/Kubernetes
• Networking
• EMC Storage
• Database systems such as Oracle, MySQL/MariaDB, Postgres
• Red Hat Certifications preferred.
• Ability to maintain strict confidentiality.
• Ability to communicate effectively in English, both verbally and in writing, sufficient to communicate with co-workers, customers, write clear and concise reports, and collect information.
• Ability to use multiple electronic devices including standard office machines, cellular phones, and security appliances.
• Knowledge of Cyber Security vulnerabilities, mitigation strategies, network architecture, and how to apply security controls.
• Ability to articulate highly technical processes and information to a non-technical audience.
• Ability to meet the physical requirements necessary to safely and effectively perform all assigned duties.
• Ability to pass a federal background check and obtain a “Q” Clearance.
• Ability to understand policies, procedures, laws, regulations, and other directives and maintain strict confidentiality.
• The primary work location will be at the Losee Road facility in North Las Vegas, Nevada.
• Work schedule for this position will be 4/10's, Monday - Thursday (subject to change).
• Personnel may be requested by leadership to work in excess of 40 hours per week due to projects, activities, and emergencies; critical operational demands may occasionally require off-shift work.
• Pre-placement physical examination, which includes a drug screen, is required. MSTS maintains a substance abuse policy that includes random drug testing.
• Must possess a valid driver's license.
  

MSTS is required by DOE directive to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants offered employment with MSTS are also subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment. In addition, Applicants for employment must be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship, at least 18 years of age. Reference DOE Order 472.2 , “Personnel Security”. If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted.

Department of Energy Q Clearance (position will be cleared to this level). Reviews and tests for the absence of any illegal drug as defined in 10 CFR Part 707.4 , “Workplace Substance Abuse Programs at DOE Sites,” will be conducted. Applicant selected will be subject to a Federal background investigation, required to participate in subsequent reinvestigations, and must meet the eligibility requirements for access to classified matter. Successful completion of a counterintelligence evaluation, which may include a counterintelligence-scope polygraph examination, may also be required. Reference 10 CFR Part 709 , “Counterintelligence Evaluation Program.”

MSTS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, disability, veteran status or other characteristics protected by law. MSTS is a background screening, drug-free workplace.

Annual salary range for this position is: $75,108.80 - $112,673.60.

Starting salary is determined based on the position market value, the individual candidate education and experience and internal equity.