Location: Oak Ridge, Tennessee
Job Title: System Administrator - Patching and Vulnerability Management
Career Level From: Specialist
Career Level To:
Organization: Y-12 IT Infrastructure (51130472)
Job Specialty: System Administration
Manages ServiceNow Vulnerability Response Remediation Tasks and Vulnerable Item assignment. Proactively evaluates and remediates risk related to vulnerability management compliance across a wide variety of technologies. Responsible for vulnerability detection and assessment, and driving vulnerability remediation. Interact daily with End-Users, System Administrators and Cyber Security to ensure vulnerable devices are brought into compliance. Develops and recommends corrective actions for vulnerabilities that cannot be immediately remediated.
ESSENTIAL JOB DUTIES:
* Utilizes ServiceNow Vulnerability Response on a daily basis to assign vulnerabilities to system administrator groups throughout the organization
* Remediate high-density vulnerable systems to include Windows Desktop, Windows Server infrastructure and web browsers on a monthly basis.
* Remediate systems with Critical, High and Medium vulnerabilities within prescribed timeframes
* Create, as needed, advanced Powershell scripts to remediate systems with vulnerabilities
* Manage the end-to-end vulnerability lifecycle from discovery to closure
* Implement processes, capabilities and techniques for vulnerability management and remediation
* May require frequent inter-organizational and outside customer contacts
* Performs system monitoring of accountable systems and contributes to optimum system availability.
* Develops and maintains current operational procedures and user documentation applicable to the supported systems
* Responsible for improving and communicating general system knowledge, skills and capabilities, and providing advanced technical consultation as required
* Accountable for all direct output assigned and for providing direct output support to his/her manager
* Responsible for maintaining a thorough knowledge of applicable Federal, State, DOE, Corporate and Plant rules, regulations and Plant-wide operating policies and procedures
* Performs other duties as assigned
* Required to attend and/or successfully complete training classes as determined by the Training and Development Technologies Department, through General Employee Training (Reference DOE Order 426.2), and Management
* Participates in worker involvement including input to work planning and methods to identify hazards and controls
* Understands a worker's right to stop work when they feel their own or other's personal safety is jeopardized
* Attends all required safety meetings and training. Offers suggestions on improvements to the work environment
* Experience working in environment that utilizes ServiceNow Vulnerability Response and ITSM ticketing software.
* Strong understanding of vulnerability scanning systems (Nessus, Tenable Security Center, etc).
* Strong understanding of the current Microsoft Windows Operating Systems (server and desktop OS's)
* Strong understanding of patch management systems (SCCM, WSUS, Puppet, Ansible, etc.)
* Experience with virtual computing environments, including desktops and servers preferred
* Strong Scripting skills preferable
* Strong communication skills and ability to work with customers and technical personnel across departments and organizations
* In-depth understanding of information technology systems in a highly distributed computing environment
* Understanding of Oracle and SQL Server DBMS systems
* Understanding of Edge, Chrome and Firefox browsers
* Understanding of Networking equipment and technology
* Experience with securing hardware and software components
* Experience with backup and recovery of physical and virtual computing environments
* Experience with deploying applications across a large network
* The candidate must also have the ability to present technical and operational information clearly and effectively through the oral and written word, solve complex technical problems, and be alert to changes that may affect the security and operational environment of systems
CNS is a drug-free workplace. Candidates accepting a job offer will be required to pass a pre-placement physical, drug screening and background investigation. As an employee, you may be required to receive and maintain a security clearance from the United States Department of Energy in order to meet eligibility requirements for access to sensitive information or matter. U.S. citizenship is a requirement for security clearance applicants. All employees are subject to being randomly selected for drug testing without advance notification.
CNS is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, gender, sexual orientation, gender identity, age, religion, national origin, ancestry, genetic information, disability or veteran status.