First Tek
Infrastructure Engineer 3 (IT)
First Tek, Pasco, Washington, us, 99302
POSITION RESPONSIBILITIES Note: All official drafts, documents and recommendations, as listed below, must be reviewed, finalized and approved / accepted by appropriate BPA manager or other federal personnel with the authority to do so. Under BPA technical oversight, use professional level skills/ knowledge to perform system administration of the following systems, including: Configuring applicable software and systems, maintaining local documentation, installing/updating/removing software, applying change control processes and procedures, planning, and preparing for future growth, troubleshooting, and resolving technical issues, and performing system-related training for the following systems: Linux Server administration; primarily RHEL. VMware Virtualization infrastructure (vCenter, NSX, Aria Suite) support. Manage configuration management for Linux Enterprise Environment (e.g., Puppet, Ansible, Salt, Chef etc.). Source control management (GIT); install, update, and maintain code releases per established procedures. Implement and maintain least privileged and role-based access control models. Design and support baseline hardening configurations and exceptions for Linux OS. Assist and guide software deployment services and package management. Drive and support DevOps best practices. Provide coding/scripting (Bash or Python) expertise and assistance. Design and maintain patching, repository using RHEL Satellite. Work on an Infrastructure in predominately air-gapped or isolated environments. designs and procedures. With BPA technical oversight and approval, provide the following support: Research, test, and draft / document standardized technical procedures for the deployment of server and workstation computer hardware and associated operating systems; organize, store, and dispose of superseded documents in accordance with Information Governance & Lifecycle Management (IGLM) standards. Mark documents and maintain filing system(s), files, emails, and records in accordance with compliance requirements. Share and disperse documents only to appropriate personnel (those with a Lawful Government Purpose (LGP) to know). Mark and maintain all official records in accordance with the Information Security (INFOSEC) and Information Governance & Lifecycle Management (IGLM) standards and procedures. Validate official records are accurately maintained for auditing purposes. Perform regular assessments of newly discovered vulnerabilities on a wide range of operational network devices, computer systems devices and various software packages. Document patch and vulnerability applicability assessments and recommend vulnerability mitigation options. Report any concerns to the BPA manager. Respond to support calls utilizing change management software to process and complete the tasks necessary for resolution of technical client issues; unusually complex issues may include involvement of the appropriate BPA manager or team lead. Provide advice and recommendations for process / procedural changes that may become necessary due to system changes, upgrades, etc. to appropriate BPA manager / team lead / BPA stakeholders. Provide input and recommendations to the BPA manager, technical lead, and staff regarding computer infrastructure decisions, and create tasks to fulfill management-directed goals. Support and assist the BPA team lead and North American Electric Reliability Corporation - Critical Infrastructure Protection (NERC-CIP) subject matter experts (SMEs) with implementing, analyzing, and reporting on the operational compliance of all Control Center cyber assets. Develop, draft, and recommend improvements to the Control Center's procedures and processes for compliance with BPA and NERC-CIP standards and policies. Develop, draft, and recommend improvements to the Control Center's procedures and processes for BPA's Grid Modernization project, as well as other capital and expense projects. Assist BPA management with the implementation and promotion of approved operational compliance process improvement efforts, specifically as relates to the administration of the above referenced systems. May be required to carry a BPA supplied cell phone and work non-core hours when requested. REQUIREMENTS Education & Corresponding Experience (required on matrix) A degree in Computer Science, Information Technology, or a related technical discipline is preferred. 6 years of experience is required with an associate or bachelor's degree in applicable fields. 10 years of experience is required without a degree or applicable degree. Experience must include direct work experience in Information Technology performing System Administration. Experience includes a minimum combination of work-related experience, on-the-job training, and/or vocational training. Working knowledge and experience sufficient to successfully support and maintain a virtualized and converged computer environment. Required Technical Skills & Experience (required on matrix) 5 years of experience with the following: Working knowledge and experience sufficient to successfully support, maintain, and troubleshoot enterprise Linux Infrastructure. Preferred Skills & Experience (optional on matrix) Self-motivated and takes personal responsibility for their work. Can also work with others on a small team. Experience in researching vulnerabilities and deploying security patches in a large IT infrastructure environment using automation. Experience architecting, designing, and managing specific technologies such as Puppet/CHEF/SaltStack, VMware Aria Suite, GIT, and centralized patch/package management tools such as RHEL Satellite. Experience working in cloud or private cloud environments. Experience administering computer systems in a 24/7 high availability operational environment. Experience performing and analyzing scans using tools such as Nessus. Additional Requirements (not required on matrix) Valid U.S. Driver's License is required.