Sr Staff Systems Administrator Security and Comp

Location: Arvada, CO
Salary: $65.00 USD Hourly - $78.00 USD Hourly
Description: Our client is currently seeking a Sr Systems Administrator with deep expertise in Security & Compliance Hardening to support the implementation of CIS Benchmarks and CMMC Level 2 controls across AWS-hosted RHEL8, RHEL9, and Rocky9 environments. This role focuses on designing, building, and maintaining hardened AMIs to meet the stringent security and compliance requirements of government and defense workloads.

The ideal candidate will have strong Linux administration skills, cloud security experience, and a practical understanding of compliance automation and secure system design.

This job will have the following responsibilities:

• Implement CIS Benchmarks for RHEL8, RHEL9, and Rocky9.
• Build, test, and deploy hardened AMIs using EC2 Image Builder or Packer.
• Apply and validate Linux configurations for CMMC Level 2 alignment.
• Conduct assessments using Trivy and CIS tools; remediate non-compliant settings.
• Automate enforcement of least privilege, secure boot, kernel parameters, and log integrity.
• Map technical controls to CMMC practices and NIST 800-171.
• Maintain documentation and evidence for CMMC audits.
• Collaborate with compliance teams to close gaps between CIS/NIST and CMMC.
• Integrate compliance automation into CI/CD pipelines.
• Use AWS services (IAM, Config, Systems Manager, CloudTrail) for secure provisioning and monitoring.
• Tag and track hardened AMIs for CMMC-scoped environments.
• Implement security monitoring and incident response for cloud-based Linux systems.
• Ensure encryption, audit logging, and identity management meet federal standards.
• Automate control implementation using Ansible, cloud-init, and shell scripting.
• Maintain playbooks and scripts for provisioning and remediation.
• Use AWS SSM and Run Command to enforce baselines.
• Support infrastructure-as-code for consistent, auditable builds.
• Conduct compliance scans and generate CMMC-aligned evidence.
• Integrate logs and telemetry with SIEM platforms (e.g., Exabeam).
• Develop dashboards and reports for audits and POA&M documentation.
• Work with IT Security, Cyber, and Compliance teams to define/enforce policies.
• Maintain documentation for hardened images, baselines, and workflows.
• Assist in training and knowledge transfer to operational teams.

Qualifications & Requirements:

• 5+ years of experience in Linux System Administration and Automation.
• Strong knowledge of CIS Benchmarks, NIST 800-171, and CMMC frameworks.
• Proficiency with Ansible, Git, and shell scripting.
• Experience with AWS services and secure cloud provisioning.
• Excellent communication and documentation skills.
• Proven ability to lead system upgrades and compliance initiatives.
• Experience with AWS EC2 Image Builder and Packer.

By providing your phone number, you consent to: (1) receive automated text messages and calls from the Judge Group, Inc. and its affiliates (collectively "Judge") to such phone number regarding job opportunities, your job application, and for other related purposes. Message & data rates apply and message frequency may vary. Consistent with Judge's Privacy Policy, information obtained from your consent will not be shared with third parties for marketing/promotional purposes. Reply STOP to opt out of receiving telephone calls and text messages from Judge and HELP for help.

Contact:

This job and many more are available through The Judge Group. Please apply with us today!