Baltimore - Systems Administrator - Endpoint Security

Overview:

The Systems Administrator (Endpoint Security) plays a role in sustaining client relations and project success. Key to the success of this position is the successful delivery of projects, and effective communication to all levels of staff for reporting project status.

MUST BE US CITIZEN

MUST HAVE INTERIM SECRET CLEARANCE OR HIGHER

Responsibilities:

• Perform computer imaging through client's mandated tools such as Microsoft Endpoint Configuration Manager (MECM).
• Develop and maintain up-to-date STIG complaint images across multiple networks that are compatible on all government furnished computer hardware.
• Troubleshoot system outages to resolve the problem and recover the services to maximum performance in the shortest amount of time as possible.
• Administer various manufacturers of networked printers including HP and Lexmark multi-function devices with CAC authentication, large format plotters, and specialized 3D printers.
• Centrally manage printer and multi-function device firmware, patches, and configuration from vendor server management software such as HP Security Manager.
• Automate patching of Windows servers and workstations through the use of Microsoft Endpoint Configuration Manager (MECM) and Windows Server Update Services (WSUS).
• Implement and monitor server backup and restore operations as defined in government SOP’s.
• Develop systems architecture and other system engineering/administration documentation.
• Create test plans to allow for a proper evaluation of hardware and software being considered for implementation.
• Provide written evaluations of system concepts, system designs, and system support program proposals with the goal of recommending actions for optimizing system performance to include evaluations of technical and production performance.
• Implement and monitor the disaster recovery plan for maintained servers.
• Implement and monitor testing and installation of patches, updates, additional tools and future versions of software.
• Ensure the server logs are kept on the central Splunk server, and are provided to the ISSM (Information Systems Security Manager) upon request.
• Troubleshoot all IT issues for the assurance of server reliability.
• Provide recommendations that address the future performance needs of enterprise services.
• Perform full beta-testing to ensure full functionality and integration with all services prior to applying changes to production systems.
• Perform preventative maintenance and server patching after normal business hours as needed.
• Schedule installation of all required server patches to occur after normal business hours.
• Install patches on client servers and workstations.
• Ensure compliance with Cybersecurity Vulnerability Alerts and Security Technical Implementation Guides.
• Provide engineering consulting and compliance management.
• Assist in technical evaluation of the vendor submissions for compliance with client specifications.
• Participate in Change Management Control process and submit Requests for Change.
• Administer system security tools to include ACAS and SCAP.
• Ensure STIG checklists and associated artifacts for all technologies are reviewed, and validation results are posted.

• Administer CBC’s container on the client’s McAfee Host Based Security System (HBSS) and client's Endpoint Security System (AESS) ePO server to include all modules required by STIG, computer objects, policies and client tasks.
• Manage and configure Windows Defender as required.

Qualifications:

• Minimum requirement is HS Diploma with 12 years of overall applicable experience Or Bachelor's with minimum of 10 years experience.
• Interim Secret is allowed until full Secret clearance obtained.
• Obtain and maintain (if don't already possess) a computing environment certification relevant to job duties (must have within 6 months of hire).
• DoD 8570.01-M baseline certification at time of hire.
• Experience with McAfee Host Based Security System (HBSS) and Endpoint Security System (AESS).
• Experience with managing and configuring Windows Defender.
• Experience in evaluating hardware and software being considered for implementation.
• Experience with system concepts, system designs.
• Experience with creating and maintaining PowerShell scripts for automation.
• Experience with recommending actions for optimizing system performance to include evaluations of technical and production performance.
• Experience with researching, developing, demonstrating, integrating, and testing innovative technologies.
• Experience with implementing and monitoring the testing and installation of patches, updates, additional tools, and future versions of software.
• Experience in making recommendations that addresses the future performance needs of enterprise services.
• Experience with preventative maintenance and server patching.
• Experience with Change Management Control process and submit Requests for Change.
• Experience with administering system security tools to include ACAS and SCAP.
• Must be able to work independently.
• Must have strong verbal and written communication skills.
• Must be able to follow instructions and provide support to all team members.

About Us:

Soft Tech’s mission is to help government organizations design, implement, and maintain mission critical Information Technology solutions. By focusing jointly on our employees and our customers, we are able to achieve our mission by providing each and every one of our customers with continuous quality customer support.

Soft Tech Consulting, Inc. is an Equal Opportunity Employer.