Cybersecurity and GRC Systems Administrator

Why Join Rincon Research Corporation (RRC)?

At Rincon Research Corporation, our primary business is innovating, developing, and fielding digital signal processing (DSP) products and services for the United States Defense and Intelligence Communities in support of national security.

Rincon Research Corporation (RRC), an employee owned company, is seeking a talented, tenacious, results-driven individual to work in a multi-disciplinary R&D environment with similarly motivated electrical engineers, mathematicians, computer scientists, and analysts who are collectively responsible for creating custom digital signal processing solutions and leveraging them to make an operational mission impact. 

We are looking for a Cybersecurity and Governance, Risk and Compliance (GRC) focused Systems Administrator who can create technical enterprise solutions for monitoring, reporting, and resolving operational security challenges. In this role you will help steer and implement Rincon’s evolving development Cybersecurity, and GRC infrastructure and tooling.

Come join the team that is creating cutting edge signal processing and geolocation systems for the future!

What are the primary responsibilities in the Cybersecurity & GRC Systems Administrator position? 

• Build, deploy, maintain, and manage security monitoring and reporting systems and tools in Windows and Linux environments.
• Monitor and report on cybersecurity threat feeds, such as system logs, security alerts, vulnerability, and compliance scans.
• Lead and facilitate incident response and remediation activities, such as coordinating with cross-functional teams to contain and eradicate security threats. This will include isolating affected systems, collecting and reporting information, and implementing remediation measures.
• Develop and maintain comprehensive practices and procedures, such as incident response plans, risk management plans, and control exception documentation, ensuring they are up-to-date and aligned with requirements and security best practices.
• Conduct and support cybersecurity and GRC tabletop exercises and simulations to test and improve incident response and risk management capabilities.
• Support the execution and management of monthly systems operations cycles, including system patching, monitoring, maintenance, and optimization.
• Create and maintain documentation, such as user guides, knowledge bases, change requests, and system maintenance records.
• Establish and maintain standards of security and system administration and development practices, such as technical design, solution development, systems configuration, and operations procedures.
• Monitor, manage, and report on information system performance, security, availability, and recoverability.
• Work closely with ISSO to successfully implement and maintain security controls and solutions. This will include supporting RMF processes like IATT and ATO, and system audits and accreditations.
• Implement system security controls, and perform day-to-day security operations of various system.
• Review and manage technical proposals, change requests, and implementation guides.
• Support and lead enterprise wide vertical and horizontal integration, planning, and coordination.

What required background will make you successful? 

• A Master’s degree in Computer Science, Information Systems, Engineering, Business, or other related discipline. May be substituted for 7+ years of experience.
• Requires security certification in compliance with DOD 8570 within 90 days of hire.
• Requires professional certification in one or more areas within 12 months of hire.
  1. Examples include CISA, RHCSA, BTL1, CCNA Security.

• Ability to obtain and maintain TS/SCI security clearance
• US CITIZENSHIP REQUIRED

Preferred skills: 

• Ability to demonstrate excellent communication and collaboration skills such as the ability to effectively convey technical information to both technical and non-technical audiences through written, verbal, and large group presentations.
• Working knowledge of a configuration tool such as Ansible, Puppet, and Chef.
• Working knowledge of network infrastructure and network edge devices, such as firewalls.
• Working knowledge of network security scanners such as Nessus, and Rapid7.
• Working knowledge of system observability, metric collection, and monitoring platforms, such as Prometheus and Grafana.
• Working knowledge of threat intelligence feeds and SIEM platforms, such as Splunk and Graylog.
• Experience with scripting or programming skills in a language such as Powershell, Python, Bash, Go.
• Experience working within security implementation guides to develop and maintain compliance baselines.
• Experience with system virtualization and application containerization concepts
• Strong desire to automate operations tasks. 

Where is the position located?

The preferred location for this role is in our Tucson, AZ Headquarters.  However, it can also be located in our Centennial, CO or Chantilly, VA offices.

What benefits does RRC offer?

• 100% employer-paid premiums for family medical and dental insurance, employee life insurance, short-term and long-term disability (STD & LTD)
• Flexible reimbursement spending accounts for medical expense and dependent care
• Immediate participation and vesting in the company’s Employee Stock Ownership Plan (ESOP) and 401(k) Plan
• Employer contributions to RRC’s ESOP
• Employer matching contributions to the company’s 401( k) Plan
• Employer discretionary contributions to the company’s 401(k) Plan

Rincon Research Corporation is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, veteran status, or any other protected factor.