Apply on Employer Site

M.C. Dean, Inc. · 5 months ago

Cybersecurity System Administrator - DMV

Washington, DC

Full-time

Onsite

Mid, Senior Level

$104K/yr - $156K/yr

5+ years exp

M.C. Dean, Inc. is seeking a highly skilled Cybersecurity System Administrator to support a secure operational technology environment. The role involves managing enterprise IT systems while ensuring compliance with federal cybersecurity frameworks and risk management, with responsibilities spanning system administration, cybersecurity operations, and compliance documentation.

Information Technology

No H1B

Security Clearance Required

Responsibilities

Install, configure, upgrade, and maintain enterprise systems including: Windows Server 2019/2022, Windows 10, RHEL 7/8

Manage virtual machines and storage in a VMware vSAN environment

Administer Microsoft SCCM, WSUS, Active Directory (AD), Group Policy (GPO), and perform system patching and image deployment

Integrate and maintain vendor systems and third-party applications within a Windows ecosystem

Operate and manage jump (bastion) hosts for network segregation and secure remote access

Coordinate with development and support teams to test system hardware/software and optimize performance

Provide Tier 1-3 support, troubleshoot incidents, and maintain operational resilience via regular backups and recovery plans

Load PKI certificates and maintain change management documentation and incident logs

Serve as the Information System Security Manager (ISSM) for all assigned systems

Monitor networks for real-time threat indicators; investigate and respond to security events

Implement and operate cybersecurity tools such as ACAS, NESSUS, SCAP, and STIG Checklists

Conduct and remediate vulnerability scans; follow DISA STIGs and IAVA compliance

Manage POA&Ms, deviation lists, and ensure systems maintain Authority to Operate (ATO)

Provide FRCS cybersecurity engineering support and continuous monitoring in accordance with DoD and Army standards

Perform penetration testing, threat analysis, and security risk assessments in lab/test environments

Collaborate with stakeholders to improve system hardening, respond to ICS-CERT alerts, and mitigate CAT 1/2/3 vulnerabilities

Maintain up-to-date security artifacts, plans, and policies as required under RMF, NIST SP 800-series, FISMA, and FedRAMP

Load documentation and scan data into the A&A Asset Manager

Facilitate FISMA-required annual reviews (e.g., Contingency Plans, Security Controls)

Support system reauthorization activities, including 5-day on-site assessments if required

Educate end users on security best practices and threat awareness

Conduct ICS/SCADA system inventories following guidance including, but not limited to U.S. Army ICS Inventory Methodology and Unified Facilities Criteria (UFC) 4-010-06, Cybersecurity of Facility-Related Control Systems

Assist in the development and verification of documentation necessary to complete the DoD RMF assessment and authorization process

Implement Implementation of DoD Security Technical Implementation Guides (STIGs) on traditional Information Technology (IT) and Operational Technology (OT) systems

Conduct vulnerability scanning and document system vulnerabilities

Work in a team environment alongside other cybersecurity engineers and Risk Management Framework (RMF) analysts

Qualification

Cybersecurity frameworksWindows ServerVMwareRisk Management Framework (RMF)DoD 8140 IAT Level II certificationNIST SP 800-53Vulnerability managementSCADA systemsCustomer service skillsTraining othersCommunication skillsTeam collaboration

Required

Active TS/SCI w/ polygraph clearance is required

3+ Years of Experience with a Master's Degree in Information Technology, Risk Management, Cybersecurity

5+ Years of Experience with a Bachelor's Degree in Information Technology, Risk Management, Cybersecurity

8+ Years of Experience with an Associate's Degree in Information Technology, Risk Management, Cybersecurity

11+ Years with a High School Diploma

Ability to process and operate application software, to include word-processing, spreadsheets and databases

Must meet the Department of Defense Directive (DoDD) 8570.01 “Information Assurance Training, Certification, and Workforce Management” and DoD 8570-M “Information Assurance Workforce Improvement Program” requirements for IAM (Information Assurance Manager) Level 2, IAT (Information Assurance Technical) Level 2, OR IASAE (Information Assurance System Architect and Engineer) Level 2

Documented training in the following areas: network infrastructure (Cisco), Microsoft Windows

Experience working on government and/commercial projects implementing cybersecurity requirements in a variety of industrial control systems (e.g., building management, electronic security, fire alarm/mass notification, electrical distribution, power management, etc.)

DoD 8140 IAT Level II certification (e.g., Security+ CE, CCNA Security, CySA+)

TS/SCI clearance is required

5+ years of experience in DoD RMF cybersecurity and system administration

Experience with IA tools and processes: STIGs, Nessus, SCAP, ACAS, vulnerability management

Demonstrated knowledge of: Windows Server/Client, RHEL, VMware, Cybersecurity frameworks: RMF, NIST SP 800-53, FISMA, Security monitoring, firewall, and encryption toolsets

Preferred

Bachelor's degree in Computer Science, Information Systems, or related technical field

5+ years of experience working with industry and government agencies on the design of ICS platforms and integrated ICS systems

Strongly preferred: Meet the Department of Defense Directive (DoDD) 8570.01 “Information Assurance Training, Certification, and Workforce Management” and DoD 8570-M “Information Assurance Workforce Improvement Program” requirements for IAM (Information Assurance Manager) Level 3, IAT (Information Assurance Technical) Level 3, OR IASAE (Information Assurance System Architect and Engineer) Level 3

Familiarity with various industry ICS products

Experience implementing a variety of security assessment tools

Implementation of DoD Security Technical Implementation Guides (STIGs)

Security Readiness Review (SRR) Tools (scripts and OVAL Benchmarks, ACAS, Wireshark)

Excellent understanding of the DoD RMF lifecycle and NIST 800-53 controls implementation

Strong written and verbal communication skills Ability to coordinate with and support multiple team members, vendors, and government customers

Ability to identify, maintain, and troubleshoot HMI components

Ability to identify, maintain, and troubleshoot control network components

Ability to interpret drawings both mechanical and electrical

Ability to identify, maintain, and utilize SCADA systems and KPI's

Ability to train others with lesser skills

Ability to access all levels and areas of the facility

Working knowledge of EMS/SCADA or other operational control systems

Knowledge of SCADA protocols like Modbus, IEC 60870-5-101 or 104, IEC 61850 and DNP3 and other major SCADA protocols

Awareness of NIST Special Publication 800-82, Guide to Industrial Control Systems (ICS) Security and UFC 4-010-06 Unified Facilities Criteria (UFC) Cybersecurity of Facility

Awareness of DoD Risk Management Framework (RMF) process

Possession of excellent customer service and organization skills

Possession of excellent oral and written communication skills