Talent.com
IT Security Administrator, II

IT Security Administrator, II

Space Telescope Science InstituteBaltimore, MD, US
job_description.job_card.variable_days_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
  • serp_jobs.job_card.permanent
job_description.job_card.job_description

The Space Telescope Science Institute (STScI) is a multi-mission science operations center for NASA’s flagship observatories. Our world-class astronomical research center is based on the Johns Hopkins University Homewood campus in Baltimore, Maryland. This position can support hybrid work. Candidates must reside in or be willing to relocate to our local market. (MD, DE, VA, PA, DC & WV). This position requires US Citizenship or Permanent Residence in order to meet ITAR requirements.

The Information Technology Services Division (ITSD) is seeking an Information Technology Security Engineer. This role is instrumental in securing systems and data that support cutting-edge science and engineering as part of the Space Telescope Science Institute’s unique role in supporting NASA’s space-based observatories.

The ideal candidate will have at least 3 years of cybersecurity experience, though we welcome applicants with strong system administration backgrounds who are passionate about transitioning into security roles.

Key Responsibilities :

  • Collaborate with others to design, implement, and maintain effective, mission-aligned information security controls.
  • Participate in the Institute’s cybersecurity incident response team, supporting investigations and remediation efforts.
  • Provide hands-on maintenance and support for both physical and virtual infrastructure with an emphasis on reliability and security.
  • Serve as an escalation point for Service Desk tickets involving network and security systems / services.
  • Administer and refine the configuration of firewalls, IDS / IPS, EDR platforms, and other security technologies.
  • Assist the primary ISSO with ongoing system security documentation updates, including System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), and Risk Assessments.
  • Contribute to the execution and maintenance of the Continuous Monitoring (ConMon) program by collecting evidence, updating control implementation details, and tracking system status.
  • Support the preparation and facilitation of monthly Security Working Group (SWG) meetings, including agenda creation, note-taking, and action item tracking.
  • Help ensure compliance with FISMA and NIST SP 800-53 security control requirements through documentation reviews and coordination with system stakeholders.
  • Assist in managing and responding to security assessments, audits, and control validation efforts in coordination with the ISSO and technical teams.
  • Maintain records of security-related activities in support of the system’s Authorization to Operate (ATO) and ongoing compliance lifecycle.
  • Engage in a collaborative team environment that values knowledge-sharing, peer mentoring, and continuous learning.

Required Qualifications :

  • A minimum of 3 years of technical experience in cybersecurity, or equivalent experience with a strong foundation in systems and / or network administration.
  • Practical experience with :
  • Firewall management (Check Point preferred).
  • Diagnostic tools including packet capture, command-line analysis, and log parsing.
  • Splunk or similar SOAR / SIEM solutions.
  • Linux system administration.
  • Active security domain certification (e.g., CompTIA Security+, CEH or equivalent DoD 8140 basic certification).
  • Solid grasp of networking architectures, protocols, and security principles.
  • Strong written and verbal communication skills, especially when working across technical and non-technical teams.
  • Self-motivated with the ability to prioritize and complete tasks independently.

    • Preferred / Desirable Qualifications :

  • Practical application of scripting languages such as Python or Bash for automation.
  • Entry-level implementation of automation approaches using scripting (Python, shell), and APIs.
  • Experience with :
  • IDS / IPS systems
  • Incident response and digital forensics
  • Working knowledge of FISMA and NIST compliance frameworks
  • Security monitoring and reporting tools
  • Wireless and wired network security
  • DNS, proxies, DLP, and Zero Trust architectures
  • Implementing IAM solutions, such as Cisco Duo.
  • PKI and certificate services.
  • Cloud security experience (especially with AWS, including IAM, EC2, VPC, KMS, CloudFormation / Terraform).
  • Exposure to security platforms such as CrowdStrike.
  • System administration skills across multiple platforms (Linux, Windows, macOS).
  • Supporting users and systems in a highly technical, research-intensive environment.
  • Employer retirement contribution – direct STScI contribution of 10% of your salary from your first day
  • 12 days sick leave, up to 24 days’ vacation, and 10 paid holidays
  • Flexible work schedule with healthywork / life balance
  • Comprehensive medical / dental / vision / prescription plans, and more!

    • Salary range $90,000-$108,000.

    TO APPLY :   Please upload a resume, cover letter and online application using this link :

    Applications received by 09 / 03 / 2025 will receive full consideration. Applications received after this date will be considered until the position is filled.

    LIHybrid

    serp_jobs.job_alerts.create_a_job

    It Administrator • Baltimore, MD, US