View all jobs
Linux Systems Administrator
Sterling, VA · Information TechnologyRSC2 is looking for a Linux Systems Administrator to support our program with the Drug Enforcement Agency in Sterling, VA.
Qualifications:
Experience with Redhat Linux 6, 7, Jboss EAP 7.x, Satellite 5.x/6.x, bash, ansible, VMware, HP Blade servers, Splunk
Responsibilities:
• verify that personnel meet required security investigation, clearance, authorization, mission
requirement, and obtain supervisory approval from the GPM or COR before granting access
to the IS
• report security violations and incidents to DC management and to IS as required by DEA’s
Incident and Intrusion Reporting
• perform scanning and vulnerability assessments of network assets with approved software
and authorization
• ensure secure configurations to include all pertinent patches and fixes by routinely reviewing
vendor sites, bulletins, and notifications and, after GPM or COR approval, proactively
updating systems with fixes, patches, definitions, and service packs
• ensure any system changes resulting from updating or patching are documented prior to
implementation
• maintain current anti-virus (AV) engines and definitions on all ISs
• manage and review user accounts, access, and logins and suspend or terminate accounts in
accordance with local policy and obtain approval from the Government Program Manager
(GPM) or his/her designee for any accounts to be suspended or terminated
• remove inactive accounts that exceed 45 days and departing customers’ accounts the day of
departure.
• manage, enforce, and audit all account passwords, permissions, inactivity, and suspension
policies
• remove or disable all default, guest, and service accounts in ISs or network devices, and
rename administrative accounts as applicable
• use separate accounts for SA/NA privileged level and general user access
• review IS and network audit logs and log files, and report anomalous or suspicious
information to the DEA Program Manager and the Contractor Program Manager
• monitor IS performance to ensure that recovery processes, security features, and procedures
are properly restored after an IS has been rebooted
• monitor IS performance to ensure that processes, security features, and operating system
configurations are unaltered
• assist with property accountability as necessary
• ensure configuration management for security-relevant IS software (including IS warning
banners) and that hardware is maintained and documented
• implement and test IS and data backup procedures for integrity and prohibit attempts to
strain or test security mechanisms or to perform network line or keystroke monitoring
without authorization
• establish audit trails, conduct reviews, and create archives as directed by DC
• provide a monthly report to the GPM of active and disabled accounts which lists any and all
user accounts and an action performed
We are an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other protected characteristic. The EEO is the Law poster is available here.
Qualifications:
Experience with Redhat Linux 6, 7, Jboss EAP 7.x, Satellite 5.x/6.x, bash, ansible, VMware, HP Blade servers, Splunk
Responsibilities:
• verify that personnel meet required security investigation, clearance, authorization, mission
requirement, and obtain supervisory approval from the GPM or COR before granting access
to the IS
• report security violations and incidents to DC management and to IS as required by DEA’s
Incident and Intrusion Reporting
• perform scanning and vulnerability assessments of network assets with approved software
and authorization
• ensure secure configurations to include all pertinent patches and fixes by routinely reviewing
vendor sites, bulletins, and notifications and, after GPM or COR approval, proactively
updating systems with fixes, patches, definitions, and service packs
• ensure any system changes resulting from updating or patching are documented prior to
implementation
• maintain current anti-virus (AV) engines and definitions on all ISs
• manage and review user accounts, access, and logins and suspend or terminate accounts in
accordance with local policy and obtain approval from the Government Program Manager
(GPM) or his/her designee for any accounts to be suspended or terminated
• remove inactive accounts that exceed 45 days and departing customers’ accounts the day of
departure.
• manage, enforce, and audit all account passwords, permissions, inactivity, and suspension
policies
• remove or disable all default, guest, and service accounts in ISs or network devices, and
rename administrative accounts as applicable
• use separate accounts for SA/NA privileged level and general user access
• review IS and network audit logs and log files, and report anomalous or suspicious
information to the DEA Program Manager and the Contractor Program Manager
• monitor IS performance to ensure that recovery processes, security features, and procedures
are properly restored after an IS has been rebooted
• monitor IS performance to ensure that processes, security features, and operating system
configurations are unaltered
• assist with property accountability as necessary
• ensure configuration management for security-relevant IS software (including IS warning
banners) and that hardware is maintained and documented
• implement and test IS and data backup procedures for integrity and prohibit attempts to
strain or test security mechanisms or to perform network line or keystroke monitoring
without authorization
• establish audit trails, conduct reviews, and create archives as directed by DC
• provide a monthly report to the GPM of active and disabled accounts which lists any and all
user accounts and an action performed
We are an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other protected characteristic. The EEO is the Law poster is available here.