Review and understand Security Benchmarks such as CIS, STIG, NIST etc. for servers,
endpoints, databases, network & security devices, etc for creating automated security
assessment signatures and remediation procedures
Evaluate and implement Infrastructure ( Windows Endpoints and Servers, Linux and Unix
Endpoints and Servers, Network & Security Nodes, Database & Storages, Cloud ) to test
identified automated security assessment signatures and remediation procedures
Create Information Security Baselines (Controls basis on Security Hardening Guidelines)
for various infrastructure devices and define subsequent remediation guidelines, risk
level of non-compliance, etc.
Quality Assurance of Security Baselines, automated security assessment signatures and
remediation procedures
Research and recommend innovative ideas, and wherever possible, automated
approaches, for system administration tasks
Automate associated processes to ensure efficiency and accuracy
Continual maintenance and enhancement of Security Control Library
Experience and Qualifications
Strong scripting (e.g. Python, Bash, Batch, Powershell) and automation skills.
Windows system administration experience including Active Directory domains, DNS,
DHCP, Windows Security, Group Policies, User Account Control, User Rights, Account
policy, Audit policy etc.
Exposure of working with multiple windows platforms inclusive but not limited to
Windows XP/8/8.1/10/Windows Server 2003/2008/2008 R2/2012/2012 R2/2016/2019
and linux platforms inclusive but not limited to Redhat, CentOS, Ubuntu, AIX, HP UX
Linux and Unix system administration experience including system configuration and
in-depth under the hood working of: Secure Boot Settings, TCP Wrappers, IPtables,
Logging and Auditing, syslog, auditd, logrotate, cron, PAM, File permissions, user and
group settings
Basic to intermediate knowledge of cybersecurity principles, cybersecurity frameworks,
threats and vulnerabilities
Professional IT Certifications, such as: Microsoft MCP, MCSA, or MCSE, RHCSA , RHCE.
Security certification is a plus (Security+, CISSP, GIAC, CEH, SSCP, etc.)
