System and Security Administrator at Standard Calibrations, Inc in Chesapeake, Virginia

Job Description:

Position Overview:

The System and Security Administrator is responsible for the installation, configuration, maintenance, and security of all IT systems and networks within an organization. This role involves monitoring and managing both hardware and software systems to ensure maximum uptime, optimal performance, and protection from internal and external security threats. The administrator also designs, implements, and enforces security protocols and policies to safeguard sensitive information and ensure compliance with industry regulations.

Key Responsibilities:

System Administration:

• Manage Servers and Workstations: Install, configure, and maintain servers (Windows, Linux, etc.), workstations (Mac & Windows Laptops and Desktops), and network devices (routers, switches, firewalls, etc.).
• Operating System Management: Ensure operating systems are up-to-date with patches, updates, and security fixes.
• User Account Management: Create and manage user accounts, roles, and permissions across various systems and platforms.
• Backup and Recovery: Implement and maintain regular backup and disaster recovery strategies to ensure data integrity and availability.
• Monitoring and Reporting: Use monitoring tools to track system performance and logs for troubleshooting, capacity planning, and resource management.
• Automation: Develop and maintain automation scripts (e.g., in PowerShell, Bash) to streamline administrative tasks like software deployment, user provisioning, and system updates.

Security Administration:

• Network Security: Configure and manage firewalls, intrusion detection/prevention systems (IDS/IPS), VPNs, and other security tools to safeguard the network.
• Endpoint Security: Ensure endpoint devices (laptops, desktops, mobile devices) are protected with antivirus, endpoint detection and response (EDR) software, and encryption.
• Security Monitoring: Regularly monitor network traffic, logs, and system activity for unusual behavior or signs of security breaches.
• Access Control and Authentication: Implement multi-factor authentication (MFA), single sign-on (SSO), and other access control mechanisms to ensure only authorized users access sensitive data.
• Vulnerability Management: Perform routine vulnerability assessments and patch management to address security weaknesses across systems and applications.
• Incident Response: Develop and implement incident response plans for managing security breaches or cyberattacks, including root cause analysis and remediation.
• Compliance and Auditing: Ensure compliance with industry regulations (e.g., GDPR, HIPAA, PCI-DSS, CMMC) by maintaining secure configurations and performing regular audits.

Documentation and Reporting:

• Maintain up-to-date documentation on system configurations, network diagrams, and security protocols.
• Provide regular reports on system performance, security status, and incidents to management.
• Document security policies, procedures, and guidelines for internal stakeholders.

Collaboration and Training:

• Collaborate with other IT teams (IT help desk, developers, ecommerce) to ensure secure and efficient system integration.
• Educate staff about security best practices, phishing attacks, password management, and other security-related topics.

This job description is designed to outline the primary duties, responsibilities, and qualifications of the Systems and Security Administrator position, but is not intended to be exhaustive. Other duties and responsibilities may be assigned as needed to support the success of the organization.

Education:

• Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent work experience.

Experience:

• 3-5 years of experience in system administration and IT security.
• Experience with both on-premises and cloud-based infrastructure (e.g., AWS, Azure).
• Knowledge of server virtualization technologies (e.g., VMware, Hyper-V, Digital Ocean) is preferred.
• SaaS, ERP software management and development experience preferred.

Preferred Certifications:

• CompTIA Security+ (or similar security certification).
• Certified Information Systems Security Professional (CISSP) or Certified Ethical Hacker (CEH) is a plus.
• Microsoft Certified: Windows Server or similar systems certifications.
• Cisco Certified Network Associate (CCNA) or other networking certifications are desirable.

Technical Skills:

• Proficient in operating systems (Linux, Windows Server, macOS, FreeBSD, Debian).
• Strong knowledge of networking protocols (TCP/IP, DNS, HTTP/S, DHCP, etc.).
• Familiarity with security tools such as firewalls, antivirus software, IDS/IPS, SIEM systems.
• Scripting skills in PowerShell, Bash, or Python for automation.
• Experience with cloud security and infrastructure (AWS, Azure, Google Cloud).
• Familiarity with configuration management tools (e.g., Ansible, Puppet, Chef) is an asset.

Soft Skills:

• Strong problem-solving and troubleshooting skills.
• Ability to communicate technical concepts to non-technical staff.
• Strong attention to detail and the ability to work independently or in a team.
• Excellent time management and organizational skills.

Preferred Skills:

• Knowledge of ITIL (Information Technology Infrastructure Library) or similar frameworks for IT service management.
• Experience with SIEM (Security Information and Event Management) tools such as Splunk, ArcSight, or similar platforms.
• Experience with compliance and regulatory standards (GDPR, HIPAA, PCI-DSS, CMMC, etc.).

Working Conditions:

• Location: On-site or remote, depending on the organization's policies.
• Work Hours: Typically full-time, but may require after-hours work during emergencies, system upgrades, or maintenance windows.
• Travel: May require some travel depending on the organization's infrastructure and needs.

Safety

It is SCI's policy to require safe operations and practices from all employees and to ensure our management team focuses on maintaining a safe working environment even while working in hazardous work environments.

Appearance

• Business Casual

Physical Requirements

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.

• While performing the duties of this job, the employee is regularly required to talk or hear.
• The employee frequently is required to stand; walk; use hands to finger, handle or feel; and reach with hands and arms.

AAP/EEO Statement

Standard Calibrations, Inc. (SCI) provides equal employment opportunities (EEO) to all employees and qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or status as a protected veteran. In addition to federal law requirements, SCI complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Standard Calibrations, Inc. (SCI) expressly prohibits any form of workplace harassment. Harassment based on race, color, religion, sex (including pregnancy, sexual orientation, or gender identity), national origin, disability, age (40 or over), or genetic information (including family medical history) is illegal and will not be tolerated. Improper interference with the ability of SCI's employees to perform their job duties may result in discipline up to and including discharge.

Standard Calibrations, Inc. (SCI) reserves the right to vary or amend the duties and responsibilities at any time according to the needs of the company's business. The statements contained in this job description reflect general details as necessary to describe the principal functions of this job, the level of knowledge and skill typically required, and the scope of responsibility. SCI provides cross training and other task training as necessary to ensure all positions can be augmented, supported, or fully covered by multiple employees. SCI employees at any level may be assigned at any time to perform tasks unrelated to their primary job description.

#IND123

PI254961879