Security Operations (SecOps) Engineer & Facility Security Officer (FSO)

Aria, Limited Liability Company
Seattle, United States of America
28 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Compensation
$ 185K

Job location

Seattle, United States of America

Tech stack

Microsoft Windows
Software Applications
Bash
Ubuntu (Operating System)
Command-Line Interface
Cloud Computing
Configuration Management
Computer Security
Databases
System Configuration
Continuous Integration
Software Debugging
Linux
Programming Tools
Virtual Private Networks (VPN)
Python
Local Area Networks
Lightweight Directory Access Protocols (LDAP)
Network Architecture
Powershell
Virtual Local Area Networks
Virtual Machines
Virtualization Technology
Network Routing
Cloud Platform System
Sysadmin
Delivery Pipeline
Deep Learning
Offline Storage
Firewalls (Computer Science)
Gitlab
GIT
Information Technology
Deployment Automation
Bare Metal
Gsuite
Network Server
User Administration
Vulnerability Analysis

Job description

ARiA is seeking a highly motivated, high-agency Security Operations (SecOps) Engineer / Facility Security Officer (FSO) to serve as the sole onsite systems administrator and security officer for our Seattle, WA office. In this role, you will solve complex infrastructure problems in an unforgiving, high-stakes defense R&D environment. You will have total ownership of local Seattle operations including secure air-gapped systems and be part of the company-wide team supporting the shared corporate computing infrastructure that ranges from standard corporate cloud systems to ARiA's on-premises GitLab DevOps pipelines and deep-learning servers at the Madison, VA headquarters. We succeed when our technical infrastructure is so seamless, robust, and compliant that our scientists and engineers can innovate completely unhindered by administrative drag.

Our Culture

We operate as an agile, elite team rather than a rigid bureaucracy. We seek "principled pragmatists"-low-ego individuals who have the confidence to design and defend a secure technical architecture, but the humility to pivot or change a process when a teammate, an audit, or new data exposes a superior approach. We value those who are dedicated to mastering their craft through deep work, yet remain calm and collaborative when operational or security challenges arise, ensuring the branch remains secure and mission-ready.

The Standard

This is an individual contributor, boots-on-the-ground engineering role. You are the sole IT practitioner in Seattle. If you cannot comfortably configure an Ubuntu server from the command line, physically route a local firewall, or debug a broken Git repository without a corporate helpdesk to back you up, this environment will not be a fit.

Ours is a high-intensity environment that measures success by the density of your impact and the absolute integrity of our security posture rather than hours at a desk. We seek disciplined professionals who deliver world-class infrastructure support efficiently, recognizing that sustained excellence at work is only possible when you have a fulfilling life outside of it. We provide market-leading compensation and benefits because we value your expertise, but we want ARiA to be more than just a paycheck; we want people who are truly energized by protecting the environments where crucial defense tech is forged.

SCOPE OF WORK

As the sole onsite IT and security practitioner in Seattle, you will drive the local branch's operations across its full lifecycle-from day-to-day desktop support to the administration of secure air-gapped server environments. Working in close coordination with the corporate System Administrator, corporate FSO, and cross-functional engineering teams, you will secure and administer local-server and cloud-based systems across ARiA.

Core Responsibilities

  • Classified & Air-Gapped Infrastructure Ownership: Serve as the primary architect and administrator of secure, onsite air-gapped networks and local server systems, ensuring absolute compliance with DCSA requirements and NIST guidelines.
  • Infrastructure Generalist & Tech Support: Act as the lone technical point of contact to configure, deploy, and troubleshoot Windows and Ubuntu workstations and servers, while managing network routing, firewalls, and central monitoring.
  • Facility & Personnel Security Leadership (FSO): Direct all local personnel and physical security workflows for the Seattle branch in strict accordance with the National Industrial Security Program (NISP) and NISPOM updates.
  • Operational Empathy: Bridge the gap between rigid security frameworks and user reality, prioritizing the enablement of our mission over personal technical preferences. You view an infrastructure roadblock or a vulnerability scan as a puzzle to be solved, not a reason to stop.

Sample Tasks

  • Configure, build, and secure local Windows and Ubuntu server and workstation systems for the Seattle branch.
  • Support updates and configuration management of baremetal and virtual machines on a schedule defined by NIST 800-53A and 800-171 under guidance of / in collaboration with the corporate Sysadmin.
  • Manage local network routing, firewalls, and VPN configurations while supporting central monitoring and reporting vulnerability scans under guidance of / in collaboration with the corporate Sysadmin.
  • Coordinate local branch components of cloud platforms (Google Workspace, Slack) alongside on-premises development tools, GitLab repositories, and LDAP user management.
  • Manage employee background investigations, coordinate secure outside visits, and maintain meticulous tracking of hardware and software assets.
  • Partner with the Corporate FSO to develop, distribute, and track government-mandated security training and perform regular self-inspections of compliance procedures.

Requirements

Do you have experience in Windows?, Do you have a Bachelor's degree?, * U.S. Citizenship Required: Applicants must be U.S. citizens. Due to immediate operational timelines, you must possess an active Secret (or higher) clearance, OR be fully eligible for immediate reinstatement (separated from a cleared GovCon/DoD role within the last 24 months under favorable conditions). We cannot accommodate initial clearance sponsorships or prolonged adjudicative delays for this vacancy.

  • Education & Experience: Bachelor's degree in a relevant technical field or equivalent professional training and experience in systems administration/security operations.
  • Practitioner Role: This is not an administrative or management position. As the sole onsite support technician, you are expected to physically secure the facility, configure the hardware, and write the scripts that automate your workflows., * Linux/Windows Systems Administration: Proven experience managing bare-metal and virtualized environments (Ubuntu Server familiarity is a must). You should know how to manage user permissions, local storage, and package dependencies via CLI.
  • Network Infrastructure: Hands-on experience physically configuring and troubleshooting firewalls, switches, and VPNs (e.g., VLAN segmentation, ACLs).
  • Scripting & Automation: Ability to write and maintain functional scripts (Bash, Python, or PowerShell) to automate backups, patches, and routine compliance monitoring.
  • Security Frameworks: Practical execution of NISPOM and NIST 800-171/53 controls (actually implementing the technical controls, not just reading the policy).
  • Software Competency: Demonstrable skill with cloud applications, desktop software, database support, and automated deployment/continuous-integration pipelines.

Professionalism

  • Resilience: Ability to independently manage competing, fast-paced demands in an intense environment and maintain absolute calm under technical pressure.
  • Communication: Excellent oral and written communication skills to clearly distill security protocols to teammates and coordinate seamlessly with distributed corporate leadership.
  • Continual Learning: Exceptional ability and desire to acquire new knowledge, technical skills, and security certifications to stay ahead of evolving threats.
  • Execution: A proven track record of taking complete, independent ownership of IT systems or security protocols from concept to delivery, with minimal oversight.

Benefits & conditions

Pulled from the full job description

  • Parental leave
  • 401(k)
  • Health insurance
  • 401(k) matching
  • Paid time off
  • Health savings account
  • Dental insurance, * 401(k)
  • 401(k) matching
  • Dental insurance
  • Employee assistance program
  • Flexible schedule
  • Health insurance
  • Health savings account
  • Life insurance
  • Paid time off
  • Parental leave
  • Relocation assistance

About the company

ARiA is a specialized R&D firm where advanced science, acoustics, machine learning, and signal processing meet real-world deployment. We build the technical engines powering next-generation defense and commercial systems, tackling high-consequence challenges that demand an agile, interdisciplinary response. We trade rigid hierarchy for total ownership, creating a culture defined by freedom and accountability. As part of an elite team, you will design, deploy, manage, and protect the critical technical infrastructure-from cloud-based development environments, to on-premises high-performance Linux server systems, to secure tactical platforms. ARiA: Real Research. Real World.TM www.ariacoustics.com

Apply for this position