Systems Admin, Linux - TS/SCI Required

Job Summary:

The System Administrator, Linux SME key position will oversee day-to-day system administration tasks, ensuring the optimal operation, security, and integrity of information assets in line with set standards and procedures. Collaborating closely with information owners, HQ USINDOPACOM Directorates, Systems Staff, Network Staff, and Cybersecurity staff, the Linux SME plays a crucial role in guaranteeing the secure and efficient functioning of applications and systems on the HQ USINDOPACOM networks. Entrusted with the administration of over 60 servers distributed across five distinct networks and three varying security classifications, their duties encompass the installation, operation, enhancement, security, monitoring, and corrective oversight of the systems under their purview.

Job Responsibilities:

• System Administration: Maintain, install, update, patch, and secure operating systems and applications for all USINDOPACOM systems, including, but not limited to:

  • Linux/UNIX

  • Red Hat 7 and newer

  • BIND DNS

  • ACAS

  • SMTP Relay

  • SPLUNK

  • SYSLOG

  • APACHE

  • Ansible

  • YUM

  • DNS Zones

  • DNSSEC

  • ServiceNow

• Manage the patching of systems and applications, coordinating ASI’s if downtime is required for patching.

• Maintain security posture and STIG compliance in line with DoD and USINDOPACOM requirements for all systems and applications. Provide recommendations for system improvements and automation.

• Ensure Linux/UNIX systems and applications adhere to DoD PKI requirements, including maintaining PKI certificates.

• Update Kickstart deployment files for secure installations of mission-critical Red Hat Enterprise Linux Systems, adhering to DoD and USINDOPACOM directives.

• Create and maintain custom scripts for system functions.

• Integrate all Linux/Unix systems within the USINDOPACOM Endpoint Security Solutions (ESS) architecture, ensuring correct ESS component configuration.

• Conduct daily reviews of security and performance logs.

• Evaluate and address assigned tickets in ServiceNow daily, determining optimal support strategies.

• Collaborate with USINDOPACOM developers to create workflows for Linux-based assets, requests, and tasks within ServiceNow.

• Attend technical meetings, work groups, and workshops, offering recommendations to the Government.

• Use ACAS daily to monitor security posture, create policies, run scan jobs, analyze reports, and validate repository information, ensuring compliance with DoD scanning guidance.

• Backup/restore Linux/UNIX systems and applications as per DoD and USINDOPACOM policies.

• Provide support during command exercises and inspections.

• Test and execute the Linux/UNIX Continuity of Operations (COOP), documenting and reporting results.

• Create, maintain, test, and update Linux/UNIX SOPs and documentation.

• Be available for occasional after-hours and weekend work to address both scheduled and unscheduled service outages.

• Submit a Monthly Status Report (MSR) to the COR-appointed Technical Assistant (TA) by the 5th of the following month, detailing accomplishments, efforts, deliverables, meetings attended, task issues, and items requiring Government action.

Minimum Qualifications:

• IAW DoD 8140.03-M, must meet the Intermediate Proficiency Level qualifications.

• Must have at least three years of experience managing, supporting, patching, backing up and restoring Linux/UNIX systems and applications in a DoD environment.

• Must have experience securing systems and applications in accordance with Federal, DoD and HQ USINDOPACOM regulations, directives, policies and Security Technical Implementation Guides (STIG).

• Must have experience with managing BIND DNS, DNS Zones, and DNSSEC

• Must have experience managing Linux/UNIX operating systems in a Virtual Machine Operating Environment (VOE) like VMware.

• Must have experience installing, configuring and managing Assured Compliance Assessment Solution (ACAS) within a DoD environment.

• Must have experience managing SMTP Relay’s.

• Must have experience managing and securing Apache Web Servers.

• Must have experience managing YUM servers.

• Must have experience with Ansible.

• Must have experience managing, supporting, and using SPLUNK and a Syslog server.

• Must have experience supporting Endpoint Security Solutions (ESS) agents on Linux/UNIX systems.

• Must be “Red Hat Certified System Administrator (RHCSA) 6 (or later)” certified and certification must be in good standing.

• Must possess active TS/SCI Clearance