Be Challenged and Make a Difference
In a world of technology, people make the difference. We believe if we invest in great people, then great things will happen. At AnaVation, we provide unmatched value to our customers and employees through innovative solutions and an engaging culture.
Description of Task to be Performed:
AnaVation is looking for a Sr. Systems Security Engineer to assist the customer with engineering and administration tasks. The ideal candidate will be comfortable engaging with client leadership on a regular basis and interacting with senior level team members.
Responsibilities include, but not limited to:
· Performing hands-on engineering, administration, and securing of multiple operating systems (e.g., Windows, RHEL, Unix variants), and applying DISA STIGs across diverse vendor technologies, including virtualization platforms (VMWare, Hyper-V), cloud environments (AWS, Azure, Google Cloud), and enterprise applications.
· Perform system administration tasks to include audit and log management, availability monitoring and remediation, account management and access reviews, and configuration update scheduling and performance.
· Contribute to the design and development of secure system architectures, ensuring security is integrated through system and network lifecycles.
· Evaluate, implement, and document security architecture solutions, aligning with compliance requirements and organizational mission needs.
· Ensure technical compliance with applicable security frameworks, standards, and regulations (e.g., DISA SITGs, NIST 800-53, RMF).
· Conducting, configuring, and managing vulnerability scans.
· Conducting vulnerability remediations, patching, and system hardening.
· Collaborate with ISSOs, Assessors, System Owners, and other stakeholders to implement security controls.
· Support security assessments, audits, and accreditation/authorization (ATO) activities.
· Document security configurations, engineering solutions, and compliance evidence.
· Troubleshoot and resolve security-related technical issues in a timely manner.
· Understanding and advising the client regarding critical application data and vulnerability points, coordinating with industry partners to advise the government regarding those security vulnerabilities, and providing recommendations and advice on incident response and recovery plans.
· Providing Incident Response (IR) activities include triage, investigating, interviewing, resolving, and reporting on events.
· Promoting information security awareness across the program, ensuring security controls and processes are implemented.
· Presenting vulnerability analysis to system owners, and leadership.
This position requires a Public Trust.
This position is on-site in Washington, DC.