Security systems administrator job description

• Knowledgeable in the system administration of a multi-site Splunk instance to include index and search head clustering concepts.
• The onboarding of data from many different platforms (syslog, universal forwarder, heavy forwarders, etc.).
• Assisting internal and external users in the creation and maintenance of custom dashboards.
• Ability to troubleshoot data ingest issues and work with other teams to nail down root cause issues and correct as necessary.
• Knowledge of F5 / Load balancing concepts as related to web services that run Splunk.
• RHEL 6/7

Educational Requirements: None

Certification Requirements:

• DoDD 8570.01-M IAT II *

AND

• Splunk Enterprise Certified Admin

Experience Requirements:

• Eight years of intensive and progressive experience in the candidate’s field of study and specialization.

Salary: $88,000-$93,000

Attestation Vaccination Status Requirement:

In accordance with the SOCOM HQ Attestation Guidance, all candidates who are considered for hire must complete Form DD 3150 to report their COVID-19 vaccination status.

About TSM, Inc.: TSM serves many customers in the Government and private sector. Most of these projects are long-term and involve cutting edge technologies. The prospect of working for reputable client organizations on the latest technologies in a friendly work environment helps us attract and retain top-quality seasoned professionals who are technically strong.

TSM’s flexible benefits allow staff to choose from a variety of plans to meet their own needs and the needs of their families. Our family-friendly policies and programs help staff balance their personal and professional lives. CareFirst Health Insurance, Companion Vision and Dental Insurance, and Life/Accident/Disability insurance options through Hartford Group give our employees options and comprehensive coverage while keeping out of pocket costs low. TSM offers retirement and savings through the Nationwide 401(k) plan. TSM believes in investing in our employees and offers a tuition reimbursement plan, provides an employee assistance program, and professional development program to help our employees reach the next level.

Not ready to make a career change just yet, submit your resume to join our talent community. We'll keep you updated occasionally on new job opportunities.

Systems Operations - Systems Administrator with Focus on Security


Summary: U-Haul is seeking a Systems Administrator to join the Systems Operations team as a Windows and Linux administrator with a focus on security best practices. The ideal candidate will have an outgoing personality, be self-motivated, have strong interpersonal skills, and a positive attitude. Additionally, they will have experience performing security research and a familiarity with PCI and/or HIPAA requirements.


Duties:


Research security best practices to comply with various governing bodies, such as SOX, PCI, and HIPAA Perform remediation on platforms that may include patching, and uninstallation of insecure software Perform internal audits against our systems to determine compliance with PCI, SOX, etc Work with other Systems Operations members and the security team to create new security policies Help to manage and maintain Active Directory and Group Policy with an emphasis on security Perform evaluations on security events, including looking through event logs Help to manage an endpoint detection and response platform, like McAfee, Kaspersky, SentinelOne or Carbon Black Cloud



Requirements/Education:


Experience working with a centrally managed antivirus/endpoint detection and response, like McAfee, Kaspersky, SentinelOne or Carbon Black Cloud Experience working with syslog software like ELK, Splunk, Nagios, or SolarWinds SIEM 2+ years experience working with Windows Server 2012+ 1+ years working with Linux operating systems like CentOS, RHEL, and Ubuntu Knowledge of Active Directory and GPO best practices SQL Reporting experience is a big plus Basic knowledge of containerization security is a plus Experience participating in a security audit is a plus Experience working with scrum is a plus Preferred certifications: Security+ and/or GIAC



Perks of joining the U-Haul fleet:


Get your career moving with a company who empowers team members to the healthiest version of themselves! We provide robust wellness benefits, events, and resources to help team members becomes the happiest and healthiest they can be.

Here are just some of the programs U-Haul has available:

Full medical coverage New indoor basketball and fitness gym including workout classes Onsite medical clinic for you and your family Career stability Opportunities for advancement Valuable on-the-job training Prescription plans Dental & Vision Plans Business and travel insurance YouMatter Employee Assistance Program Paid holidays, vacation, and sick days Employee Stock Ownership Plan (ESOP) 401(k) Savings Plan Life insurance Critical illness/Group accident 24-hour physician available for kids Subsidized gym/ membership MetLaw legal program MetLife auto and home insurance Discounts on cell phone plans, hotels, and more LifeLock identity theft Tuition reimbursement program Free online courses for personal and professional development at U-Haul University Savvy consumer wellness programs- from health care tips to financial wellness U-Haul federal credit union


Family Traditions:


U-Haul is family. In many cases, that's not just figurative talk. Generations of the same families often choose to build careers here, realizing that a personal investment in U-Haul means providing for each other. U-Haul was founded in 1945 by the Shoen family in Ridgefield, Washington. After a year of innovations, the company relocated its headquarters to Phoenix, Arizona. U-Haul helps families move from locations in all 50 states and 13 Canadian Provinces and Territories. Today, U-Haul has grown into more than trucks and trailers, we offer a variety of services such as U-Box, Self-storage and Moving help. When a family entrusts U-Haul and its services with their loved ones and possessions amid the stress and adventure of a move, we embrace that awesome responsibility. A caring culture means catering to our millions of annual customers. But it also means supporting our thousands of dedicated Team Members.

AMERCO and its family of companies, including U-Haul, have strived to create a culture of health and wellness. As of February 1, 2020, and consistent with applicable state law, no AMERCO or U-Haul company will hire individuals in states where it may lawfully decline to hire individuals who use nicotine products. By continuing with this application, you are indicating that, if hired, you consent to nicotine screening in the future. This policy will not apply to team members hired before February 1, 2020.

U-Haul is an equal opportunity employer. All applicants for employment will be considered without regard to race, color, religion, sex, national origin, physical or mental disability, veteran status, or any other basis protected by applicable federal, provincial, state or local law. Individual accommodations are available on requests for applicants taking part in all aspects of the selection process. Information obtained during this process will only be shared on a need to know basis.

• Configure and maintain the email security solution to provide protection against spam, viruses, phishing attacks and other threats using email as the vector of attack. The current solution is the Cisco Email Security Appliances (ESA). Continuous updates of the threat definition profiles is expected. Application of patches and hotfixes are required in order to maintain the highest level of security on the systems. Multiple ESAs are configured in each site and across multiple sites to provide the highest rate of delivery possible. Message traffic can reach levels over 500,000 per day with thousands to tens of thousands of malicious message attempts. The Government expects to migrate to the latest version within 18-24 months of release and potential for migration of users and data to off premises service provider.

• Background in SPF, DKIM, DMARC and TLS . Develop and write Content and Message filters for specific security requirements.

• Maintain a 99.99% fully mission capable rate/ uptime for the email security platform. The mission capable rate shall be measured by the Government provided monitoring solution. The current monitoring platform is Solarwinds Orion and SPLUNK. The mission capable rate shall be calculated on a monthly basis and shall be included with each submission of the Monthly Status Report.

• On a quarterly basis, provide a status and configuration assessment of the ESA platforms, to include message delivery counts, malicious message quarantine estimates and platform operational status. The assessment shall be submitted quarterly.

• Maintain a 90% compliance rate for vulnerability management and security compliance. Provide a quarterly vulnerability and security compliance status reports based on scans provided by internal sources, currently Tenable Nessus, citing the current vulnerability levels and security guidance compliance.

• Within 90 days of a new release, provide a service migration plan. The service migration plan shall include hardware and software requirements, update or upgrade requirements, risk and mitigations, test plan with timeline, and overall recommendations.

Clearance Requirements :

Current Top Secret security clearance with SSBI conducted within the last 51 months is required.

Required : DOD 8570-compliant cert (Sec+, Net+, CISSP, etc.)

• Understanding of using SPLUNK as a trouble shooting tool and the creation of dashboards and early warning alerts.

• Cert in Admin SPLUNK preferred

• ESA basic level course taught by Cisco.

• A med-level understanding of scripting and regular expression to create ESA filters.

• Back ground in Linux

• Ironport experience

#GDITpriority

#SysAdminCareers

#createyourcareer

Scheduled Weekly Hours:

40

Travel Required:

10-25%

Telecommuting Options:

Hybrid

Work Location:

USA DC Washington

Additional Work Locations:

COVID-19 Vaccination: GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.