at Deloitte in Kansas City, Missouri, United States
The System Admin will be responsible for evaluating, configuring, implementing, and verifying layer 0 and layer 1 STIGs compliance settings within the Deloitte GPS domain, as they are defined by the DoD. This will include the on-prem environment, as well as in the AWS GovCloud channel. Work with multiple Deloitte internal engagement teams to gather technology requirements, implement policies, standards, security, and establish best practices and delivers technical expertise around STIG implementation. Possess scripting experience using Cloud Formation or other scripting tools, in efforts to assist with automating reoccurring tasks and improve processes. Collaborates with Senior Leadership and multiple departments delivering on major national Firm Information Technologies initiatives. May serve internal or external clients.
+ Download, apply and mitigate OS updates and STIG (Security Technical Implementation Guide) for Red Hat Enterprise Linux (RHEL) and Windows Operating Systems
+ STIG (security technical implementation guide) application, testing, and compliance.
+ Provide recommendations for Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG) implementation and risk mitigations, using cybersecurity training and experience
+ Produce STIG Applicability List for the system
+ Manage changes to system and assesses the security impact of those changes
+ Exercise Nessus vulnerability and compliance scanning tools to maintain vulnerability management service
+ Maintains operational security posture to ensure information systems (IS) security policies, standards, and procedures are established and followed
+ Meet DOD requirements for vulnerability mitigation timelines and use of POA&M for prioritization.
+ Determine the scope of the implementation technology solution and the resources required for successful completion
+ Provide superior customer service to clients and collaborate with others within the team as well as across other teams
+ Concise attention to detail while testing configuration changes
+ Research, develop, implement, test and review an organization’s information security in order to protect information and prevent unauthorized access to computer systems
+ Ensure that all cloud solutions follow internally defined security and compliance controls.
+ Create, implement, and assist in the development of scripts to automate everyday operations.
+ Serves as a subject matter expert on major IT environment upgrades, enhancements, new functionality, performance, and business integrations.
+ Analyzes and resolves technology and end user incidents during standard business hours or on-call rotations; Monitors issue resolutions and collaborates with the engagement teams and engineers when necessary to resolve and apply fixes. identify root cause, document problems, and implement preventive measures.
+ Assists with special projects and initiatives such as the ITS CTO annual project; Plans and executes on major milestones.
+ Provides input and recommendations on new potential technology solutions based on research and analysis.
+ Designs and implements infrastructure solutions to meet business and technical objectives.
+ Maintains standard operations procedure documentation.
+ Ensures compliance with Software Testing Life-Cycle standard operating procedures and policies.
+ Performs other job-related duties as assigned.
+ Participates in the on-call rotation providing 24×7 support.
Years of Experience: 4+
+ Must be process driven, possess strong communication skills and careful attention to detail, have a remarkable ability to follow through in an organized and effective way.
+ Ability to manage multiple tasks and comfortable working in a fast-paced high-growth environment.
+ Experience with DISA application security, and development STIG requirements
+ Experience with Nessus reporting
+ Experience working with data and analytical tools
+ Understanding of operational and technology controls and frameworks
+ Ability to identify and summarize findings/gaps, assess root cause, and recommend solutions
+ Ability to manage projects and handle multiple priorities/assignments simultaneously
+ Ability to work effectively with all levels in the organization
+ Strong problem-solving skills and drive for results
+ Strong written and oral communication and interpersonal skills
+ Understanding of the Federal Government compliance requirements a plus.
+ Strong written and verbal communication skills with the ability to present to and collaborate with business leaders.
+ Experience with information technology and enterprise architecture best practices
+ Experience working in a team-oriented, collaborative environment
+ May require a security clearance
Education: Bachelor’s degree in Computer Science, Business Administration or equivalent educational or professional experience and/or qualifications.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Kansas City, Missouri 64106