Systems Administrator - Patching and Vulnerability Management

The System Administrator - Patching and Vulnerability Management is responsible for maintaining the security, integrity, and operational availability of enterprise information systems supporting National Defense University mission operations. This role focuses on vulnerability remediation, patch lifecycle management, compliance enforcement, and system hardening activities across server, workstation, and virtualized environments. The position supports cybersecurity initiatives aligned with Department of Defense (DoD) requirements, Zero Trust principles, Risk Management Framework (RMF), and cybersecurity compliance standards. Key Responsibilities

• Manage enterprise patch deployment and vulnerability remediation activities across Windows and Linux environments.

• Administer operating system updates, firmware upgrades, security patches, and third-party application updates.

• Utilize vulnerability management tools such as: o Tenable/Nessus o ACAS o Trellix o Microsoft SCCM/MECM o Microsoft Intune

• Perform vulnerability scanning, risk analysis, prioritization, and remediation tracking.

• Monitor cybersecurity compliance metrics and generate vulnerability reporting dashboards.

• Coordinate patch testing, validation, deployment scheduling, and rollback procedures.

• Maintain system configurations in accordance with: o Security Technical Implementation Guides (STIGs) o DoD Cybersecurity requirements o RMF controls o NIST 800-53 security standards

• Support endpoint hardening and configuration management activities.

• Investigate security findings and coordinate remediation efforts with infrastructure and cybersecurity teams.

• Perform system administration tasks including: o Active Directory administration o Group Policy management o DNS/DHCP support o File and print services administration o Windows Server administration o VMware virtual environment administration

• Support incident response activities related to system vulnerabilities.

• Document patch management processes, change control activities, and remediation procedures.

• Participate in audits, compliance assessments, and cybersecurity inspections.

• Collaborate with Information Assurance, Network Engineering, and Cybersecurity personnel to ensure operational security requirements are met.

• 5+ years of system administration experience in enterprise environments.

• 3+ years of dedicated experience supporting patch management and vulnerability remediation.

• Experience with enterprise vulnerability scanning tools.

• Knowledge of: o Vulnerability management lifecycle o Patch deployment methodologies o DoD cybersecurity requirements o STIG implementation o RMF processes o NIST 800-53 controls o Zero Trust architecture concepts

• Experience with scripting and automation

• Strong troubleshooting and root cause analysis skills.