Senior Specialist, Cyber Administration
8 days ago
San Leandro
Job Description Job Title: Senior Specialist, Cyber System Administrator Job Location: San Leandro, CA (This position is 100% onsite) Security Clearance: Must possess an active U.S. Government “Secret” Security Clearance Citizenship Requirement: U.S. citizenship is required to obtain and maintain a security clearance. Additional Requirement: Must be eligible to obtain and maintain a Top-Secret clearance Schedule: 9/80: Employees work 9 out of every 14 days – totaling 80 hours worked – and have every other Friday off. Position Summary A defense manufacturer in San Leandro, CA is seeking a Sr Specialist, Cyber Systems Administrator, to support enterprise and classified computing environments supporting aerospace and defense operations. This position serves as a senior technical member of the infrastructure team and is responsible for the administration, security, availability, and lifecycle management of enterprise servers, virtualization platforms, network infrastructure, cybersecurity systems, and classified information systems. This is a dual-function role with responsibilities divided approximately equally between enterprise infrastructure operations and classified systems administration and security support. The enterprise scope includes Windows Server, Microsoft Azure Government and GCC High services, VMware, Fortinet firewalls, Aruba switching and wireless infrastructure, backup and recovery systems, cybersecurity initiatives, and multi-site support. The classified scope includes system administration, RMF authorization support, continuous monitoring, and cybersecurity compliance for collateral classified and Special Access Program environments. The successful candidate will be a hands-on technical professional who can lead complex infrastructure work, troubleshoot across multiple technology domains, and operate effectively within a classified, government-regulated environment. Primary Responsibilities Enterprise Infrastructure Operations Server Infrastructure Administration • Administer and maintain Microsoft Azure Government, GCC High services, and on-premises Windows Server environments supporting enterprise operations., • Provide backup administration and operational support for Linux-based systems., • Manage Active Directory, Group Policy, DNS, DHCP, file services, authentication services, and supporting infrastructure., • Deploy, configure, maintain, patch, and troubleshoot physical and virtual servers., • Lead server lifecycle activities, including upgrades, migrations, technology refreshes, and decommissioning., • Develop and maintain infrastructure standards, diagrams, documentation, and operational procedures. Virtualization Administration • Administer and maintain VMware infrastructure and associated management platforms., • Provision, configure, and manage virtual machines and supporting resources., • Monitor virtualization performance, availability, and capacity; identify and address resource constraints., • Lead or support virtualization upgrades, migrations, and lifecycle activities., • Support disaster recovery, recovery testing, and business continuity planning. Network and Security Infrastructure Administration • Serve as the primary administrator for enterprise network and security infrastructure., • Administer Fortinet firewalls, including security policies, rule sets, VPN services, and web-filtering capabilities., • Manage network segmentation, VLANs, and supporting access-control configurations., • Administer and troubleshoot Aruba switching and wireless infrastructure, including performance optimization., • Monitor network availability and performance and lead troubleshooting and root-cause analysis for complex connectivity issues., • Implement and maintain approved network security configurations and infrastructure hardening requirements. Backup, Recovery, and Cybersecurity Operations • Administer enterprise backup systems and recovery processes., • Validate backup completion, retention, recoverability, and recovery readiness through scheduled reviews and testing., • Support vulnerability management, remediation, and infrastructure hardening activities., • Coordinate enterprise operating system patching and support remediation of identified security deficiencies., • Support cybersecurity audits, compliance reviews, and evidence collection., • Participate in CMMC and NIST SP 800-171 compliance initiatives. Enterprise Support and Operations • Provide Tier 2 and Tier 3 support for complex servers, virtualization, network, and security issues., • Lead or support infrastructure modernization, technology refresh, and cross-functional implementation projects., • Plan and execute maintenance windows and planned outages in coordination with affected stakeholders., • Support infrastructure operations across three company locations., • Provide technical mentorship and guidance to junior IT personnel., • Provide technical recommendations to IT and security leadership regarding infrastructure risk, performance, and lifecycle priorities. Classified Systems Administration and Security Support In coordination with the Information System Security Manager (ISSM), support classified information systems administration and cybersecurity compliance activities for systems operating under National Industrial Security Program and Special Access Program requirements. • Build, configure, deploy, harden, patch, troubleshoot, and maintain classified workstations and servers in accordance with approved security requirements and system authorization documentation., • Support RMF authorization and authorization-maintenance activities, including eMASS updates, POA&M tracking, artifact maintenance, and authorization package correspondence., • Conduct periodic security reviews and continuous monitoring activities, including audit-log review, account audits, patch and antivirus verification, vulnerability review, and configuration management support., • Support SAP cybersecurity compliance activities in accordance with applicable DoD SAP guidance, customer requirements, and approved program procedures., • Coordinate technical actions with the ISSM, System Security Officer, Program Security Officer, and Security Control Assessor, as applicable., • Provide technical and administrative support during security inspections, government audits, system security assessments, and remediation activities., • Provide backup support for designated classified systems administration and ISSO functions, as assigned and authorized. The above represents the core expected activities. Additional infrastructure, security, and compliance duties may be assigned based on program requirements and mission priorities. Required Qualifications • Must possess an active U.S. Government “Secret” Security Clearance, • U.S. citizenship is required to obtain and maintain a security clearance., • Eligibility to obtain and maintain a Top-Secret security clearance., • Minimum of 6 years of enterprise infrastructure administration experience., • Experience administering Windows Server environments in enterprise organizations., • Experience administering Active Directory, Group Policy, DNS, DHCP, and related identity and network services., • Experience administering VMware virtualization environments., • Experience administering Fortinet firewalls or comparable enterprise firewall platforms., • Experience administering enterprise switching and wireless infrastructure., • Experience supporting cybersecurity, vulnerability remediation, patching, and infrastructure hardening initiatives., • Demonstrated ability to troubleshoot complex server, network, virtualization, and security issues., • Strong written and verbal communication skills., • Ability to work independently, exercise sound technical judgment, and manage multiple priorities. Required Certifications Candidates must meet one of the following requirements: • Current CompTIA Security+, CISSP, or CISM certification; or, • Ability to obtain CompTIA Security+ within 90 days of hire. Preferred Qualifications • Experience supporting classified information systems or performing ISSO duties., • Experience supporting SAP or other DoD classified environments., • Experience with RMF, NIST SP 800-53, eMASS, POA&M management, and continuous monitoring., • Experience supporting NIST SP 800-171 and CMMC compliance initiatives., • Experience with Veeam backup and recovery solutions., • Experience with Nutanix infrastructure., • Experience supporting Microsoft Azure Government or Microsoft 365 GCC High environments., • Experience supporting Department of Defense contractors or government programs. Work Environment • Primarily on-site position., • Support responsibilities across three company locations., • Minimal after-hours support requirements., • No formal on-call rotation., • Occasional travel between company facilities., • Work performed in both enterprise and classified environments. Why Join Us: • Competitive salary and benefits package!, • Generous paid time off., • 401k with 6% match and vesting is immediate., • Strong work-life balance., • Tuition Reimbursement., • Paid paternal leave. In compliance with pay transparency requirements, the salary range for this role is $104,500-193,500. This is not a guarantee of compensation or salary, as final offer amount may vary based on factors including but not limited to experience and geographic location. We also offer a variety of benefits, including health and disability insurance, 401(k) match, flexible spending accounts, EAP, education assistance, parental leave, paid time off, and company-paid holidays. The specific programs and options available to an employee may vary depending on date of hire, and schedule type. We are proud to be an Equal Opportunity Employer. We are committed to treating all employees and applicants for employment with respect and dignity and maintaining a workplace that is free from unlawful discrimination. All applicants will be considered for employment without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender (including pregnancy, childbirth, breastfeeding or other related medical conditions), gender identity, gender expression, sexual orientation, marital status, military and veteran status, disability, genetic information, citizenship status, characteristic or membership in any other group protected by federal, state or local laws. We maintains a drug-free workplace and performs pre-employment substance abuse testing and background checks, where permitted by law. We are an E-Verify Employer. Please click here for the E-Verify Poster in English or Spanish. For information regarding your Right To Work, please click here for English or Spanish.