Network Security Administrator - Pensacola

Overview:

Nighthawk’s flexibility and expertise across the cybersecurity field provides customized solutions to our customer's unique needs.

Summary:

Services are typically accomplished through integrated product or project teams, comprised of Government and Contractor personnel. The NMOTC Information Management and Technology Department and the associated IT Enterprise provides services to over 100,000 end-users world-wide to include 1,300 unique operational medicine program owners across Navy Medicine, individual projects, laboratories, and other Fleet and Fleet Marine Force medical organizations.

Responsibilities:

Essential Job Functions:

• Ensure Assured Compliance Assessment Solution (ACAS) benchmarks and scans, Security Technical Information Guides (STIGs) and Checklists, DISA Security Compliance Checker (SCC) Security Content Automation Protocol (SCAP) Scanning Utilities and all A&A artifacts are provided at the agreed upon schedule for network administration, server administration and end user device management.
• Ensure network IAVMs are closed within 72 hours of published notification or provide mitigation strategy to NMOTC ISSM with weekly progress reports until vulnerability is sufficiently closed.
• Collaborate with NMOTC ISSM to develop mitigation strategies, perform systems log analysis, and remediate vulnerabilities.
• Utilize PowerShell to develop and deploy scripts to monitor and mitigate security vulnerabilities in OS (Operating System) and software packages installed on systems.
• Monitor and report on the status of vulnerability management activities while remediating POA&M actions with weekly reviews of CKL files to minimize findings. Ensure STIG compliance for all servers, including manual DoD STIGs on VMWARE hosts.
• Coordinate with cybersecurity teams to prioritize and address IAVMs in accordance with compliance requirements and industry standards.
• Ensure security metrics for the operating systems and supporting services meet the ‘passing requirement’ for Command Cyber Security Readiness Inspections.
• Develop network security control procedures based on Security Requirements set forth by the Defense Information Systems Agency, Defense Health Agency, and local NMOTC Policies
• Implement security controls, monitor, and respond to security alerts, analyze current technology packages for vulnerabilities and exposures.
• Utilize the Assured Compliance Assessment Solution (ACAS) suite to perform weekly vulnerability scanning and compliance checks on the MedCOI network.
• Monitor cybersecurity information channels to observe the latest developments in vulnerabilities, exploits, and countermeasures. Stay up to date with cybersecurity advisories, vulnerability databases, and best practices to effectively manage and mitigate vulnerabilities.
• Coordinate with medical staff and vendors to manage and support data integration with medical equipment.
• Manage and maintain comprehensive VMware and Azure virtual infrastructures to support efficient data processing and storage for mid-sized organization.
• Design, implement, and manage storage area networks (SAN) infrastructures to ensure efficient and reliable data storage.
• Develop and maintain data contingency plans to determine actions needed, minimize the impact of system failures or disasters and execute failover capabilities per DHA guidance.
• Establish disaster recovery strategies and test their effectiveness semi-annually.
• Manage and administer Internet Information Services (IIS) for hosting and managing web applications.
• Design, implement, and manage DHCP (Dynamic Host Configuration Protocol) services.
• Perform other duties as assigned.

Qualifications:

Necessary Skills and Knowledge:

• Knowledge and experience in managing virtual machine support using industry standard virtual machine software/hardware to include VMWARE and Microsoft Hypervisor.
• Knowledge and skill supporting the collection, documentation, and submission of all data required for new or renewals of system Authority to Operate (ATO) with Risk Management Framework (RMF) processes.
• Knowledge and experience providing technical expertise in the support of assessment and authorization (A&A) activities for all Data Center and Cloud IT infrastructure elements to ensure accurate, complete, and timely performance of all activities associated with RMF and continuous monitoring.

Minimum Qualifications:

• Minimum 10 years of related experience.
• Experience with installation, configuration, management and troubleshooting VM Ware ESX, V Sphere or Virtual Center.
• Experience applying network systems risk management framework principles for comprehensive network infrastructures.
• Must be a US citizen.
• Must have and ability to maintain a Top-Secret clearance.

Pay and Benefits

At Goldbelt, we value and reward our team's dedication and hard work. We provide a competitive base salary commensurate with your qualifications and experience. As an employee, you'll enjoy a comprehensive benefits package, including medical, dental, and vision insurance, a 401(k) plan with company matching, tax-deferred savings options, supplementary benefits, paid time off, and professional development opportunities.