Job Title: Senior System Administrator
Job Code: 14325
Job Location: Washington, DC
Job Description:
Working at Trenchant means working alongside the best security researchers and product engineers from across the security research and intelligence communities. You will be engaged on the most challenging problems in the toughest environments and delivering solutions supporting the cutting edge of cyber security research. The primary work location is downtown Washington, DC adjacent to Metro Center. Periodic travel in the DC area and along the eastern seaboard is required. Infrequent travel to our Ottawa, London and Sydney offices in support of technical exchanges is highly encouraged. We require team members with an eye for security, to serve as key contributors on the Global Engineering Support team. The candidate must possess first-class System Engineering, Networking, and infosec skills and be capable of shifting into a senior role within the team.
Trenchant is an elite global team of engineers and security researchers charged with building world-class computer security products. Trenchant’s expertise is the by-product of the L3Harris acquisition of two highly-regarded information security businesses – Azimuth Security and Linchpin Labs. United under Trenchant, we are a key component of L3Harris’ Cyber Division. We are a trusted, discrete partner furnishing security products, consultancy, training and integration services to allied security, defence, and law enforcement agencies.
Essential Functions:
- Serve as a key element of the Global Engineering Support team, fusing priorities from research, engineering, operations and leadership to modernize network infrastructure and realize efficiencies across the business unit.
- Manage Trenchant’s global network, confidently editing, improving, and maintaining firewalls (Secuity Zones, Routing polices such as OSPF and BGP, VLANS, Switching, VPNs, etc)
- Manage upgrading and tuning servers, VMs, routers, firewalls, load balancers, switches, and cloud infrastructure as needed.
- Build new automations to manage applications, VMs, Network devices, and cloud infrastructure.
- Coordinate and execute rollout of new services, products, and software development infrastructure.
- Deploy, configure and manage existing, and new containerized applications.
- Triage and diagnose network performance issues, ensuring stable infrastructure for security engineering and research teams.
- Serve as a point of escalation for incident management and resolution.
- Analyse network deployments, identify vulnerabilities, craft plans to improve security and orchestrate necessary interventions.
- Provide infosec consultation and emergency response services to a global team of 150+ security engineers and researchers.
Qualifications:
- Bachelor's Degree and 5+ years relevant experience, or equivalent
- Experience completing DISA Security Technical Implementation Guidelines (STIG) checklists
- Experience reviewing workstation, server, network device, and Intrusion Prevention System (IPS) logs using security information and event management (SIEM) tools
- 2+ years of experience in Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) solutions
- 2+ years’ experience overseeing cybersecurity on classified and/or unclassified systems, applying RMF controls under NIST 800-53, ICD503, JSIG
- Strong analytical and problem-solving skills
- Verifiable network or system administrator operations experience
- Ability to manage multiple competing priorities
- Excellent written and verbal communications skills
- Self-motivated, detail-oriented and highly organized
Preferred Additional Skills:
- Active TS security clearance with ability to obtain SCI
- Broad experience administering and securing modern server, desktop and mobile operating systems
- Experience securing networks and associated devices (firewalls, IDS/IPS, IPSec, VPNs)
- Experience deploying and managing infrastructure including virtualization technology
- Experience configuring, hardening and operating Linux and Window servers
- Working knowledge of Juniper JunOS
- Knowledge of public-key infrastructure
- Experience with scripting languages such as Python, Bash, etc.
- Experience aggregating and analysing activity logs
- Intuitive understanding of microservices paradigm and hands-on experience with container deployment and orchestration technologies
- Previous experience supporting software development teams and an understanding of the basic software development lifecycle