Window Systems Administrator

at  SAIC

Job ID: 2414801
Location: REMOTE WORK, AL, US
Date Posted: 2024-11-15
Category: Software
Subcategory: SW Systems Engr
Schedule: Full-time
Shift: Day Job
Travel: Yes, 10 % of the Time
Minimum Clearance Required: Secret
Clearance Level Must Be Able to Obtain: Top Secret
Potential for Remote Work: No
Description
SAIC is seeking a DevSecOps Engineer with a focus on Microsoft Windows Systems Administrator (SA) to join our team in support of the Battlespace Management Command, Control, and Communications (BMC3) Program.
This position requires technical engineering experience, with a demonstrated understanding and application of systems engineering and configuration management principals and process, mission planning/scheduling along with experience in systems engineering and sustainment of existing baseline. The successful candidate will be effective at face-to-face interaction with customers and other contractors to respond to requests for information, support to technical meetings, technical interchanges and enterprise working groups. The candidate must be able to work independently and represent the program and SAIC at meetings and working groups with government and associate contractors.

Responsibilities include, but are not limited to:

• Day to day sustainment & support of the installed Battlespace Management Command, Control, and Communications (BMC3) Windows System baseline.
• Identify, evaluate, and implement DoD STIGs within a Windows environment
• Skill and experience in managing Role-base Access Control (RBAC) for access within Microsoft AD to include Domain Admin, Privileged Admins, Authorized Users and Service Accounts
• Assist with capturing site variances to incorporate into the CM process, data migration (as required), application tuning, domain policies, applying security patches, submitting/closing trouble tickets (as required) and configuring the baseline to minimize downtime.
• Attend technical exchange meetings, engineering and integration meetings, post installation follow-up meetings.
• Submit recommended changes to configuration management (CM) personnel.
• Work alongside DevSecOps engineers and Cybersecurity engineers to determine and implement cyber best practices to cloud-based infrastructure using Infrastructure as Code (IaC) and automation practices.
• Completion of all applicable fielding prerequisites and post install releases (Critical System Updates (CSUs), Fast Tracks (FT), Out of Cycles (OOC), and Agile Release Events (AREs) by applicable deadlines.
• Work in air-gapped environments to create and maintain RBAC strategies for the Application Factory (AppFac) product.

Qualifications

Bachelor’s degree and 5+ years of experience as a Systems Administrator or comparable technical function. Experience and industry certifications will be considered in lieu of education requirements.

• Active Secret security clearance.

• Current IAT Level 2 Certification (Sec+ or higher).

  Experience, Knowledge, and/or Skills:

• Familiarity with DISA STIG compliance.

• Experience with instantiation and integration of Active Directory (AD), Keycloak, and Xage Manager.
• Knowledge of systems engineering roles and functions, including requirements management, functional analysis, configuration management processes and procedures.
• Administration level experience with AWS cloud.
• Experience with Active Directory, Exchange, DNS, SCCM, LDAP, Group Policy Objects, WSUS, and SQL Server.
• Experience with ACAS, Nessus, SCAP and OpenScap for STIG mitigation.
• Experience with STIG Mitigation playbook implementation via Ansible (or comparable configuration management tool) and the ability to work with Cyber Engineers to draft POAMs for STIGs.
• System Administration of Windows and Linux.
• Experience with scripting languages including but not limited to PowerShell, BASH, Python.
• Ability to create architecture diagrams and document runbooks for an end-to-end RBAC solution.
• Administration of computer systems related to domain services, including system startup and shutdown; security and application patch installation; security scanning and remediation; user account, profile, and permission management; system backup and restoration; system service and log management; system auditing; problem report management; performance management; and other IT administration-related services, as directed by the customer.
• Identification of any errors or correction needed to system technical diagrams and documentation, including installation, configuration, and operations & maintenance guides, as well as system/application verification and validation instructions

Target salary range: $80,001 - $120,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
SAIC accepts applications on an ongoing basis and there is no deadline.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site

• Day to day sustainment & support of the installed Battlespace Management Command, Control, and Communications (BMC3) Windows System baseline.
• Identify, evaluate, and implement DoD STIGs within a Windows environment
• Skill and experience in managing Role-base Access Control (RBAC) for access within Microsoft AD to include Domain Admin, Privileged Admins, Authorized Users and Service Accounts
• Assist with capturing site variances to incorporate into the CM process, data migration (as required), application tuning, domain policies, applying security patches, submitting/closing trouble tickets (as required) and configuring the baseline to minimize downtime.
• Attend technical exchange meetings, engineering and integration meetings, post installation follow-up meetings.
• Submit recommended changes to configuration management (CM) personnel.
• Work alongside DevSecOps engineers and Cybersecurity engineers to determine and implement cyber best practices to cloud-based infrastructure using Infrastructure as Code (IaC) and automation practices.
• Completion of all applicable fielding prerequisites and post install releases (Critical System Updates (CSUs), Fast Tracks (FT), Out of Cycles (OOC), and Agile Release Events (AREs) by applicable deadlines.
• Work in air-gapped environments to create and maintain RBAC strategies for the Application Factory (AppFac) product