Senior Unix Security Reviewer with Security Clearance

---

Job description

Title: Senior Unix Security Reviewer Location: Reston, VA; Washington, DC; Northern Virginia National Capital Region Clearance: TS/SCI w/CI Poly Travel Requirements: Must be willing to travel up to 30%, including local travel within the National Capital Region (NCR) of Northern Virginia, Maryland, and Washington, DC. Apavo is at the forefront of cybersecurity, providing services to military, defense, and critical infrastructure industries. Our vision of cybersecurity as a holistic, ongoing journey enables us to offer solutions that effectively mitigate risks and address vulnerabilities within any enterprise. As the cyber landscape continuously evolves, so do we, ensuring our services not only meet but exceed the ever-changing needs of our mission-critical clients. From compliance assessments and vulnerability analysis to comprehensive information system security management, Apavo's suite of services is designed to protect and serve the most sensitive and significant sectors of our society. Joining the Apavo team means becoming part of a company rooted in the principles of integrity, quality, and communication. We value positive, candid interactions and the belief that everyone has valuable contributions to make. Apavo stands out for its commitment to a work-life balance and fostering a growth mindset among all team members. If you are looking to make a meaningful impact in the cybersecurity world while growing professionally in a supportive, dynamic environment, Apavo is the place for you. We are seeking a Senior Unix Security Reviewer to join our team and play a critical role in evaluating the cybersecurity posture of enterprise environments across the Intelligence Community (IC). This position involves conducting Unix system reviews, ensuring compliance with DISA STIGs and IC Policy requirements, and contributing to organizational security processes. Responsibilities: - Unix System Reviews: Conduct detailed reviews using DISA STIGs and IC Policy requirements. Ensure systems meet configuration standards for log capture, storage retention, and services. - Security Threat Analysis: Identify and analyze system and application security threats and vulnerabilities (e.g., buffer overflow, cross-site scripting, SQL injections). - Interaction with Leadership: Collaborate with leadership and site technical staff to facilitate scoping, data collection, and execution of inspection plans. - Compliance Assessments: Conduct interviews with subject matter experts, collect data, and review comprehensive Threat Informed Critical Controls Lists (TICCL). - Security Audits: Plan, execute, and report on security audits and network vulnerability assessments with minimal supervision. - Documentation and Reporting: Prepare assessment deliverables, including Security Risk Assessments, compliance data, and STIG data. Communicate the impact of vulnerabilities through presentations and written reports. - Technical Proficiency: Utilize advanced Unix commands and scripting languages (Bash, Perl, Python) for audit, security, and administrative tasks. Required Knowledge, Skills and Abilities: Experience: 12 years of experience or the equivalent combination of education, professional training, or work experience. Candidates must possess DoD 8570 IAT III level certification.
At least five (5) years of experience in system administration with Unix platforms such as Red Hat Enterprise Linux and Ubuntu. A minimum of eight (8) years of experience in Cyber/Information Assurance.
Advanced scripting and system administration skills.
Proficiency in system audit and security expertise.
Expertise in user and process management.
Competence in network security and monitoring.
Experience with comprehensive compliance and patching strategies. - Education: Bachelor's degree in Computer Science or a related technical discipline. - Certifications: Certification in DoD 8570.01-M Cybersecurity workforce, compliance with DoD Directive 8140 Cyberspace Workforce Management, and IAT Level III. - Skills: Strong independent work ethic, exceptional oral and written communication skills, and the ability to work unsupervised. Preferred Qualifications Technical Proficiency: - Experience in engineering and operations & maintenance of enterprise Unix platforms (e.g., Red Hat Enterprise Linux, Ubuntu, and Infoblox). - Knowledge of Red Hat Enterprise Linux (RHEL) configuration, deployments, and integration. - Proficiency in key Unix management skills (scripting, system information gathering, file permissions, services). - Advanced Skills: Proficiency in advanced vulnerability assessment and reporting tools such as Tenable, Splunk, and Tableau. - Interdivision Collaboration: Ability to operate across departments to implement cybersecurity principles effectively. - Multitasking and Time Management: Capable of multitasking with efficient time management and a comprehensive understanding of cyber threats, vulnerabilities, and network security methodologies. Join Apavo If you are looking to make a meaningful impact in the cybersecurity world while growing professionally in a supportive, dynamic environment, Apavo is the place for you. Apply today to become a part of our dedicated team and help protect the most sensitive sectors of our society. Apavo Corporation is an equal employment opportunity employer and affirmative action employer. All interested individuals will receive consideration and will not be discriminated against on the basis of race, color, religion, sex, national origin, disability, age, sexual orientation, gender identity, genetic information, or protected veteran status. Apavo Corporation takes affirmative action in support of its policy to advance diversity and inclusion of individuals who are minorities, women, protected veterans, and individuals with disabilities.

<!– job description page –>