Cyber Systems Administrator

Everforth ECS is seeking a highly skilled Linux System Administrator / Cyber Security Administrator to work in our Quantico, VA office.

The Linux System Administrator will provide comprehensive IT infrastructure and security support within Department of Defense environments. The selected candidate will be responsible for the administration, maintenance, and security of Linux-based systems hosted within AWS GovCloud and MCCOG environments, while also maintaining enterprise network security infrastructure including F5 Web Application Firewalls, Palo Alto Next Generation Firewalls, and DISA's ACAS vulnerability management platforms.

This role requires strong troubleshooting skills, experience with DoD cybersecurity standards, and the ability to support operational and compliance requirements across classified and unclassified networks. The candidate will also provide subject matter expertise in the implementation of Zero Trust in accordance with the DoD Zero Trust Strategy, DoD Zero Trust Reference Architecture, DON Zero Trust Implementation Plan, and supporting USMC direction.

Responsibilities

System Administration

• Install, configure, maintain, and troubleshoot RHEL/CentOS-based Linux servers within AWS GovCloud and MCCOG infrastructure
• Manage EC2 instances, S3, IAM roles/policies, VPCs, security groups, and other AWS services within the GovCloud boundary
• Interface with MCCOG teams for provisioning, accreditation, and operational support of cloud-hosted systems
• Implement and manage AWS serverless computing services such as Lambda, Fargate, and Amazon API Gateway in AWS GovCloud

Cyber Security Administration

• Administer, configure, and maintain F5 BIG-IP Advanced Web Application Firewall, Palo Alto Networks Firewall, and ACAS/Tenable SecurityCenter and Nessus scanners
• Build and manage virtual servers and policies in BigIP AWAF ASM, LTM, and APM
• Implement firewall policies, NAT rules, and application delivery services in Palo Alto NGFW
• Provide security architecture, design, and engineering support for new system implementations

Security & Compliance

• Implement and maintain STIG hardening, ACAS/Nessus vulnerability scanning, and ensure compliance with DISA and Marine Corps cybersecurity policies (RMF/ATO)
• Conduct vulnerability scans, analyze findings, and coordinate remediation efforts
• Support RMF compliance activities and STIG implementation
• Support patch management and security hardening initiatives
• Conduct Information Systems Continuous Monitoring (ISCM) planning and implementation
• Conduct IS environment cyber security assessments as required by DoD policy and regulations
• Provide and maintain Risk Analysis and Management
• Provide support with Marine Corps Certified Application (MCCA), Operational Directives, Marine Corps Directives (MCD), Marine Forces Cyberspace Command (MFCC) direction, Cyber Protection Team (CPT) support, and ACAS/Microsoft Defender for Endpoint (MDE) support.

Operations & Maintenance

• Execute scheduled and emergency patching of Linux systems in accordance with IAVM requirements
• Configure and maintain system monitoring tools (e.g., CloudWatch, Nagios, Splunk, MDE) to ensure availability and performance SLAs
• Develop Bash, Python, or Ansible scripts/playbooks to automate routine administrative tasks
• Design and implement disaster recovery (DR) and business continuity solutions for cloud-hosted systems
• Manage backup solutions and disaster recovery procedures for Linux systems
• Perform capacity management to ensure IT resources are available to satisfy planned needs and are effectively utilized; identify capacity issues and recommend remediation to the COR
• Provide ongoing management, monitoring, and optimization of the cloud infrastructure, including compute, storage, and networking resources in AWS GovCloud
• Support and maintain MCS and MIP Configuration Management Database (CMDB) to track and document the configuration of platform components

Documentation & Change Management

• Maintain system documentation including SOPs, network diagrams, and change management records
• Maintain and annually revaluate internal Cyber Security Policy and Standard Operating Procedures (SOPs)
• Maintain and update change requests in the government's tracking system
• Troubleshoot and resolve system outages and security incidents; participate in after-hours support as needed
• Participate in incident response and cybersecurity operations
• Troubleshoot network connectivity, load balancing, and security-related issues

Collaboration

• Work with application teams, database administrators, network engineers, ISSOs, government stakeholders, and the M&RA program office to support mission requirements

• Bachelor's degree in IT, Computer Science, or related field (or equivalent experience)
• 5+ years of Linux system administration (RHEL/CentOS preferred)
• 5+ years of experience in DoD network/security administration
• 2+ years hands-on experience with AWS (preferably GovCloud)

Certifications (IAT Level II minimum per DoD 8570/8140)

• CompTIA Security+ CE (required)
• Red Hat Certified System Administrator (RHCSA) or RHCE (desired)
• Linux+ (acceptable)
• CCSP or CASP+ preferred

Clearance

• Must be a U.S. Citizen
• Active DoD Secret security clearance

Technical Skills

• AWS IAM, VPC, EC2, S3, CloudFormation, CloudWatch
• AWS serverless computing services including Lambda, Fargate, and Amazon API Gateway
• AWS compliance monitoring tools and practices in GovCloud environments
• TCP/IP networking, DNS, DHCP, NFS, SSH, LDAP, VPNs
• ACAS/Tenable.sc/Nessus, MDE, and Splunk
• F5 BIG-IP (LTM/GTM preferred)
• Palo Alto firewalls and Panorama
• DISA STIGs and SCAP compliance scanning
• RMF/ATO processes
• Network segmentation and zero trust concepts
• Experience with RAISE 2.0 (Zero Trust) and the ATO Process
• Familiarity with Windows and Linux server environments

Configuration Management

• Experience with configuration management tools such as Ansible, Puppet, or Chef
• Experience establishing and maintaining baseline configurations and inventories
• Ability to enforce and control security configuration settings
• Experience initiating, reviewing, and implementing requests for change
• Experience supporting Configuration Management Database (CMDB) to track and document configuration of platform components

Zero Trust Implementation

• Experience implementing Zero Trust architecture principles and strategies in DoD environments
• Knowledge of DoD Zero Trust Strategy, DoD Zero Trust Reference Architecture, and DON Zero Trust Implementation Plan
• Familiarity with NIST SP 800-204, NIST SP 800-204a-d, NIST SP 800-207, and NIST SP 800-207a

Information Systems Continuous Monitoring (ISCM)

• Experience with ISCM planning and implementation
• Knowledge of continuous monitoring requirements per DoD policy and regulations