Cyber Systems Administrator
Peraton · Herndon, VA · 2 days ago
On-siteOTHR$179k/yrFull-time
About the role
The Systems Administrator provides mid-level operational support for enterprise information systems within classified environments. This role is execution-focused and emphasizes privileged system administration, security tool operations, log analysis, scripting, and audit evidence production.
Responsibilities
- Perform Systems Administrator activities for Windows and Linux environments, including configuration, hardening, patching, and operational sustainment.
- Maintain and operate systems requiring privileged user access, ensuring least-privilege enforcement and auditability.
- Support system lifecycle activities including design changes, re-engineering efforts, upgrades, and performance tuning.
- Troubleshoot complex system issues across infrastructure, applications, and security tooling.
- Develop, maintain, and optimize Splunk searches, dashboards, and alerts to support, Security monitoring, audit evidence collection, and operational troubleshooting.
- Write and refine Search Processing Language (SPL) queries to extract, correlate, and validate log data across multiple data sources.
- Ensure log sources are properly onboarded, retained, and aligned with audit and compliance requirements.
- Develop and maintain scripts (e.g., PowerShell, Bash, Python, SQL) to automate data collection for audits, validate system configurations, and support continuous monitoring activities.
- Aid with automating evidence generation for recurring FISCAM, RMF, and internal audits.
- Provide technical support to Audit SMEs and ISSOs by producing, validating, and explaining system-level artifacts required for FISCAM audits and RMF assessments.
- Support documentation and validation of technical controls related to logging and monitoring, configuration management, access control, system integrity.
- Assist in responding to audit findings, including root cause analysis and technical remediation.
- Work closely with ISSOs, ISSEs, auditors, and operations teams to ensure systems are both secure and operationally effective.
- Translate technical system behavior into clear, defensible explanations for auditors and assessors.
- Participate in engineering reviews, change control boards, and security assessments as needed.
Qualifications
- Bachelor's degree in an area relevant to the position and 8+ years of relevant experience; Master's degree in an area to the position and 6+ years of relevant experience; or 4+ additional years of experience in lieu of a degree.
- TS/SCI with polygraph clearance adjudication or ability to obtain SCI and pass a poly.
- Hold active Security+, CISSP, CISA, or equivalent certifications (DoD 8570 IAM 2 equivalent).
- One (1) year of experience with IC Community.
- Experience in systems engineering or system administration in enterprise environments.
- Hands-on experience with Splunk (searches, dashboards, or administration).
- Experience using scripting or query languages (PowerShell, Bash, Python, SQL).
- Familiarity with RMF, ATO processes, and audit support in federal environments.
- Ability to operate with privileged system access in classified environments.
- Proven experience with Linux/RedHat 8 or higher, Windows Server 2019 or higher and/or Networking Appliances in Virtualized/Cloud platforms (VMSphere or AWS).
- Proven experience with Oracle 19C or higher or SQL 2019 or higher database systems.
- Proven experience with DISA Security Technical Implementation Guide (STIG) implementation and Security Content Automation Protocol (SCAP) tool usage.
- Demonstrated experience with creating and validating evidence for NIST security controls.
- Experience using and maintaining records in Xacta.
Desired Qualifications
- Skilled in implementing mitigation strategies and how to resolve problems, and to re-test/ re-evaluate systems.
- Experience with IT general controls (ITGC), Financial Information System Control Audit Manual (FISCAM), and National Institute of Standards and Technology Special Publication (NIST) 800-53v4.
- Experience with performing Security Control Assessment in compliance with NIST SP 800- 37, NIST SP 800-53, NIST SP 800-53A, and other NIST 800 guide series.
- IT audit advisory experience.
- Experience with effective policy, instruction, and development for Federal or DoD Information Security Programs.
- Experience with risk analysis and assessment determinations incorporating system/mission owner, and unique operational constraints.
- Possess a working knowledge of administrating servers, system and application security threats and vulnerabilities.
- Experience extending existing applications in areas such as security, monitoring, task automation, continuous integration, deployment, and performance optimization.