Device Compliance

US-MD-Woodlawn
# of Openings
1
Category
Information Technology
Agency/Project
SSA
Job ID
2017-2330

Overview

OBXtek Inc. is an established award-winning business providing information technology and professional management services to the federal government. OBXtek is a leader in its field and is committed to identifying, developing, and delivering innovative, mission-focused technical and logistical solutions to over 15 civilian and military partners in the Federal Government.

 

As a prime contractor for 93% of our current work, we possess a robust corporate infrastructure that provides management oversight and support for all our programs. OBXtek pairs lessons learned across disciplines with industry standard quality practices such as CMMI-Dev Level III, ITIL, 6Sigma, PMI, and ISO to create processes that leverage best practices and result in novel, successful solutions.

Responsibilities

OBXtek is currently staffing for a Senior Systems Programmer to support SSA's Division of Information Systems Security Administration and Operations (DISSAO) staff in ensuring that SSA's network devices (Windows/Unix) meet SSA system and security standards.

 

The Office of Systems Operations (OSO), DISSAO division monitors these devices for compliance to SSA systems standards. In addition, DISSAO gathers/validates compliance data, contacts administrators, creates reports, tracks compliance progress and develops new requirements for monitoring activities. Working with various other teams within DISSAO, the branch is also involved in security incident response and security problem ticket troubleshooting and remediation.

Windows Monitoring and Remediation

Activities: 

  • Review and analyze data for critical vulnerabilities and/or systems using the MS SCCM Web Portal, DISSAO data repositories, DISSAO Web Portal, MS Access reports and tools such as Splunk, Mandiant and various McAfee tools.
  • Identify, troubleshoot, and resolve common patch deployment issues by reviewing MS SCCM logs, Window system configurations, and Active Directory membership issues.
  • Use Windows command line utilities to troubleshoot/resolve problems.
  • Inform device administrators of the need for corrective action via phone and email.
  • Follow up on requests for corrective action via phone and email; track status using MS Excel spreadsheet.
  • Work with other division’s technicians as needed to troubleshoot/correct vulnerabilities.
  • Provide technical support and guidance as needed to address vulnerabilities.
  • Work with SSA team to establish policies based on industry best practices.

UNIX and Database Monitoring and Remediation

 

Activities:

  • Review and analyze data for system compliance to agency UNIX and Database systems risk model using tools such as Splunk, Mandiant and various McAfee tools.
  • Create Plan of Action and Milestone (POAM) reports in Excel or Word format to inform system administrators for each functional group of the need for corrective action.
  • If applicable, hold monthly meeting with system administrator(s) to address system configuration deficiencies.
  • Follow up on requests for corrective action(s) via email and phone and track status using SSA standard Office Suite software.
  • Maintain documents and permissions on an internal SharePoint site used to distribute compliance information.
  • Work with other branch’s technicians as needed to troubleshoot/correct vulnerabilities.
  • Use Unix command line utilities to troubleshoot/resolve problems.

  • Provide technical support and guidance as needed to address vulnerabilities.
  • Work with SSA team to establish policies based on industry best practices.

Monitor & Troubleshoot Problem Tickets, Malware Detection/Remediation and Handling Other Security Events

 

Activities:

  • Review problem ticket tracking system (CAPRS).
  • Review and analyze data for malware (viruses/exploits/key-loggers) by reviewing malware detection logs and Windows system configurations.
  • Identify, troubleshoot, and resolve malware infections on a given system by administering SSA malware removal tool, correcting Windows system configurations and/or running 3rd party anti-malware tools as needed
  • Work with anti-virus/malware vendor technical support to report undetected malware and false detections
  • Work with other division’s technicians as needed to troubleshoot and correct malware infections
  • Analyze, identify, remediate vulnerabilities identified from various other sources including additional regular internal scans (NFS, FTP, SMTP, SNMP) and information provided from external sources (audit reports, third party testing)
  • Provide technical support and guidance as needed to address malware instances
  • Research, analyze and take action to correct the problem.
  • Open, update and close CAPRS tickets with description of steps taken or resolution.
  • Routinely monitor various security mailboxes and respond to inquiries accordingly.
  • Work with SSA team to establish policies based on industry best practices.

 

Remediation of Unauthorized Modems

 

Activities:

  • Receive and coordinate monthly files.
  • Uploading files to the Web.
  • Alert the technical groups of the new data.
  • Analyze data from security device logs.
  • Follow up on requests for corrective action(s) via email and phone and track status using SSA standard Office Suite software.
  • Maintain documents and permissions on an internal SharePoint site used to distribute compliance information.
  • Enforce SSA modem and multifunctional device policy.

Investigation/Forensic Analysis

 

Activities:

  • Analyze memory dumps from specific devices using Mandiant or HB Gary.
  • Correlate memory findings and proxy logs.
  • Document findings during investigation and upon completion.
  • Work with other investigators for a more complete forensic analysis.
  • Connect to an undetected device.
    • Analyze files found and activities performed by that device
    • Provide a detailed summary of the findings.
  • Work with SSA team to establish policies based on industry best practices.

Qualifications

Experience:

  • 8 years of task related experience
  • Knowledge and use of Active directory
  • Experience in writing PowerShell, VBS, DOS , HTML and/or CSS scripts
  • Experience with Windows configuration, registry reading and directory structure
  • SA for Unix and DB systems
  • Understanding and experience with Malware
  • Experience with Mandiant or HB Gary
  • Good analytical skills
  • Analyzes and studies complex software requirements.
  • Serves as a lead resource in the design, development, implementation and maintenance of complex systems.
  • Analyzes user requirements, procedures and problems to automate manual processing.
  • Ensures effective configurations management of systems and applications.

 

Education:

Bachelor's Degree

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed