Cyber Systems Administrator

Job DescriptionEverforth ECS is seeking a highly skilled Linux System Administrator / Cyber Security Administrator to work in our Quantico, VA office.The Linux System Administrator will provide comprehensive IT infrastructure and security support within Department of Defense environments. The selected candidate will be responsible for the administration, maintenance, and security of Linux-based systems hosted within AWS GovCloud and MCCOG environments, while also maintaining enterprise network security infrastructure including F5 Web Application Firewalls, Palo Alto Next Generation Firewalls, and DISA's ACAS vulnerability management platforms.This role requires strong troubleshooting skills, experience with DoD cybersecurity standards, and the ability to support operational and compliance requirements across classified and unclassified networks. The candidate will also provide subject matter expertise in the implementation of Zero Trust in accordance with the DoD Zero Trust Strategy, DoD Zero Trust Reference Architecture, DON Zero Trust Implementation Plan, and supporting USMC direction.ResponsibilitiesSystem AdministrationInstall, configure, maintain, and troubleshoot RHEL/CentOS-based Linux servers within AWS GovCloud and MCCOG infrastructureManage EC2 instances, S3, IAM roles/policies, VPCs, security groups, and other AWS services within the GovCloud boundaryInterface with MCCOG teams for provisioning, accreditation, and operational support of cloud-hosted systemsImplement and manage AWS serverless computing services such as Lambda, Fargate, and Amazon API Gateway in AWS GovCloudCyber Security AdministrationAdminister, configure, and maintain F5 BIG-IP Advanced Web Application Firewall, Palo Alto Networks Firewall, and ACAS/Tenable SecurityCenter and Nessus scannersBuild and manage virtual servers and policies in BigIP AWAF ASM, LTM, and APMImplement firewall policies, NAT rules, and application delivery services in Palo Alto NGFWProvide security architecture, design, and engineering support for new system implementationsSecurity & ComplianceImplement and maintain STIG hardening, ACAS/Nessus vulnerability scanning, and ensure compliance with DISA and Marine Corps cybersecurity policies (RMF/ATO)Conduct vulnerability scans, analyze findings, and coordinate remediation effortsSupport RMF compliance activities and STIG implementationSupport patch management and security hardening initiativesConduct Information Systems Continuous Monitoring (ISCM) planning and implementationConduct IS environment cyber security assessments as required by DoD policy and regulationsProvide and maintain Risk Analysis and ManagementProvide support with Marine Corps Certified Application (MCCA), Operational Directives, Marine Corps Directives (MCD), Marine Forces Cyberspace Command (MFCC) direction, Cyber Protection Team (CPT) support, and ACAS/Microsoft Defender for Endpoint (MDE) support.Operations & MaintenanceExecute scheduled and emergency patching of Linux systems in accordance with IAVM requirementsConfigure and maintain system monitoring tools (e.g., CloudWatch, Nagios, Splunk, MDE) to ensure availability and performance SLAsDevelop Bash, Python, or Ansible scripts/playbooks to automate routine administrative tasksDesign and implement disaster recovery (DR) and business continuity solutions for cloud-hosted systemsManage backup solutions and disaster recovery procedures for Linux systemsPerform capacity management to ensure IT resources are available to satisfy planned needs and are effectively utilized; identify capacity issues and recommend remediation to the CORProvide ongoing management, monitoring, and optimization of the cloud infrastructure, including compute, storage, and networking resources in AWS GovCloudSupport and maintain MCS and MIP Configuration Management Database (CMDB) to track and document the configuration of platform componentsDocumentation & Change ManagementMaintain system documentation including SOPs, network diagrams, and change management recordsMaintain and annually revaluate internal Cyber Security Policy and Standard Operating Procedures (SOPs)Maintain and update change requests in the government's tracking systemTroubleshoot and resolve system outages and security incidents; participate in after-hours support as neededParticipate in incident response and cybersecurity operationsTroubleshoot network connectivity, load balancing, and security-related issuesCollaborationWork with application teams, database administrators, network engineers, ISSOs, government stakeholders, and the M&RA program office to support mission requirementsRequired SkillsEducation & ExperienceBachelor's degree in IT, Computer Science, or related field (or equivalent experience)5+ years of Linux system administration (RHEL/CentOS preferred)5+ years of experience in DoD network/security administration2+ years hands-on experience with AWS (preferably GovCloud)Certifications (IAT Level II minimum per DoD 8570/8140)CompTIA Security+ CE (required)Red Hat Certified System Administrator (RHCSA) or RHCE (desired)Linux+ (acceptable)CCSP or CASP+ preferredClearanceActive DoD Secret security clearanceTechnical SkillsAWS IAM, VPC, EC2, S3, CloudFormation, CloudWatchAWS serverless computing services including Lambda, Fargate, and Amazon API GatewayAWS compliance monitoring tools and practices in GovCloud environmentsTCP/IP networking, DNS, DHCP, NFS, SSH, LDAP, VPNsACAS/Tenable.sc/Nessus, MDE, and SplunkF5 BIG-IP (LTM/GTM preferred)Palo Alto firewalls and PanoramaDISA STIGs and SCAP compliance scanningRMF/ATO processesNetwork segmentation and zero trust conceptsExperience with RAISE 2.0 (Zero Trust) and the ATO ProcessFamiliarity with Windows and Linux server environmentsConfiguration ManagementExperience with configuration management tools such as Ansible, Puppet, or ChefExperience establishing and maintaining baseline configurations and inventoriesAbility to enforce and control security configuration settingsExperience initiating, reviewing, and implementing requests for changeExperience supporting Configuration Management Database (CMDB) to track and document configuration of platform componentsZero Trust ImplementationExperience implementing Zero Trust architecture principles and strategies in DoD environmentsKnowledge of DoD Zero Trust Strategy, DoD Zero Trust Reference Architecture, and DON Zero Trust Implementation PlanFamiliarity with NIST SP 800-204, NIST SP 800-204a-d, NIST SP 800-207, and NIST SP 800-207aInformation Systems Continuous Monitoring (ISCM)Experience with ISCM planning and implementationKnowledge of continuous monitoring requirements per DoD policy and regulationsDesired Skills Desired Skills/Certifications AWS SysOps Administrator or AWS Cloud Certification (CP, SysOps, SA)F5 Certified AdministratorPalo Alto PCNSA or PCNSEACAS Certified AdministratorPrior experience supporting USMC/M&RA systems or programsFamiliarity with MCCOG onboarding and operational processesFamiliarity with MCCA, Marine Corps Directives (MCD), and MFCC requirementsExperience supporting Cyber Protection Team (CPT) activitiesExperience with MDE security administrationExperience with containerization (Docker, Kubernetes, OpenShift)