Job Title : System Administrator - IT Security & Compliance Focused, Expert
Location : Colorado Springs, Colorado (Fully Remote)
Duration : 7 Months
Job ID : 1186651
Pay Rate : $40 - $45/hr
Responsibilities:
- Seeking an individual to support roles and responsibilities associated with the following: system administration, centralized log collection, vulnerability management (assessments and remediation), asset management, and support for other information security initiatives. You will be expected to work alongside an IT team to implement a centralized log collection and separate asset management solution. As part of your daily roles and responsibilities, you will be working directly with the security and compliance program manager in all aspects of improving the security posture of the in-scope environment, you'll be setting up and managing a log collection solution, an asset management solution, and managing the vulnerability management program for the same environment. Regarding log collection, vulnerability management, and asset management, follow established change management process, access systems, implement changes or configuration, and test the change. Mid-level vulnerability management experience will be required to manage the in-place solution and program. As part of the vulnerability management effort, there will be an expectation to work with system owners, managers, and others to provide reports or assist with remediation efforts to improve the security posture of relevant systems. Experience with technical asset management solutions in relation to IT systems, applications, cloud, and other IT assets. Apply expertise in system administration, information security, and infrastructure to enhance established policies and procedures, systems, operations, and implement best practices in all aspects of the environment in relation to the security posture of systems and applications hosting ITAR data. Collect current technical, security, and compliance issues/concerns from technical and security staff and effectively communicate these issues to coworkers or management concisely. There will be an expectation to regularly conduct security and compliance assessments of servers, applications, cloud systems, and other assets using available tools. The individual will need to be a US Citizen due to the nature of the data being worked with (ITAR data). Previous experience conducting assessments and hands-on technical remediation in relation to NIST 800-171 compliance is preferred. On an as-needed basis, there will be an expectation to serve as a backup for the information security and compliance manager.
Requirements:
Top 4 Needs:
- System admin (technical skills) that understands compliance
- Log management tool set-up experience
- ITAR (must be United States Citizen)
- Accomplishments that drive value
Basic Qualifications:
- 7+ years of Client Windows system administration experience
- 5+ years of experience implementing and managing a centralized log collection solution for IT systems
- 3+ years of experience running vulnerability management programs
- 3+ years of experience working with NIST 800-171 control operations (Change Management, Risk Management, Compliance Assessments, Remediation, etc.)
- Experience working with one of the three leading vulnerability management tools (Tenable, Qualys, Rapid7); this includes conducting vulnerability assessments using various automated and manual testing techniques, scripts, and commercial and open-source tools
- Experience working with International Traffic in Arms Regulation (ITAR) data
- Experience working with Controlled Unclassified Information (CUI)
- Experience working with ITAR cloud environments (AWS GovCloud, Azure GCC, etc.)
Additional Qualifications:
- Ability to develop strong relationships with internal teammates and business partners
- Strong communication skills required
- An ability to manage, evaluate and prioritize workload to accommodate and align with business objectives, security concerns, and cost
- Passion for continuous learning in IT data protection and technical/infrastructure technologies
- Ability to meaningfully contribute to established objectives and strengthen a fast and positive work environment.
Education:
- Bachelor's Degree in Computer Information Systems preferred; equivalent experience will be considered.
- ITAR related certifications preferred.
- ***Candidate must be United States Citizen. This is a compliance requirement for this job. No exceptions. ***
- Position is fully remote - can be located anywhere in the country.