Jr Linux Security Compliance Engineer

Peraton is seeking to hire a Jr Linux Security Compliance Engineer for its' PDSS program.

Location: Robins Air Force Base, GA

In this role, you will: 

• Perform security compliance duties for Linux systems, ensuring the secure, compliant, and reliable operation of Red Hat Enterprise Linux (RHEL) systems and associated applications.
• You will be responsible for applying DoD security standards, implementing system hardening measures, and support continuous monitoring activities to meet accreditation and audit requirements.

Daily responsibilities include:

• Security patching.
• Compliance reporting.
• Vulnerability remediation.
• Collaboration with system and application teams to ensure both security and availability.

Success in this role requires a combination of technical expertise and professional skills, including:

• Hands-on experience with RHEL administration and hardening using DISA STIGs and DoD best practices.
• Working knowledge of DoD compliance standards, RMF processes, and security procedures.
• Ability to maintain system and application availability during patching and configuration updates.
• Strong troubleshooting skills across infrastructure, security, and application layers.
• Attention to detail in configuration, documentation, and reporting for compliance.
• Effective collaboration across security, operations, and development teams.
• Commitment to continual learning and adapting to evolving DoD security requirements and Linux technologies.

Key Responsibilities

• Apply and maintain DISA STIGs and DoD security baselines on RHEL systems.
• Perform daily system checks, monitoring, and log reviews to support availability, integrity, and compliance.
• Respond to incidents, alerts, and vulnerability findings; document and resolve issues per established processes.
• Execute patch deployments, configuration changes, and system updates in line with change management guidelines.
• Conduct and support DoD security scans (e.g., ACAS, SCAP, Nessus) and assist with compliance reporting.
• Maintain security documentation, including CKLs, POA&Ms, and operational procedures.
• Collaborate with cross-functional teams to balance mission availability and compliance.
• Support secure deployments of new server or application infrastructure.
• Participate in disaster recovery planning and exercises under team guidance.

Basic Qualifications:

• Bachelor’s degree with a minimum of 2 years’ experience; 6 years of relevant experience may be substituted in lieu of a degree.
• Demonstrated working proficiency with Red Hat Enterprise Linux administration.
• Demonstrated ability to troubleshoot Linux OS and application-level issues.
• Experience with virtualization technologies (VMware), including patching and server builds.
• Practical experience applying DISA STIGs and DoD security checklists for system hardening.
• Experience supporting IAVM/IAVA/IAVB remediation within required timelines.
• Familiarity with RHEL user account management and least-privilege implementation.
• Hands-on experience with Tenable/ACAS, OpenSCAP, and Nessus for vulnerability scanning and compliance verification.
• Experience assisting with POA&Ms for non-compliant findings.
• Documentation skills with exposure to preparing security evidence packages for RMF/ATO.
• Familiarity with compliance reporting tools (SCAP, STIG Viewer, Nessus/ACAS).
• Active CompTIA Security+ certification (or higher DoD 8570 certification).
• U.S. citizenship required.
• Active DoD Secret clearance.
• Eligibility to work onsite at Robins AFB and obtain a DoD CAC.

Preferred Qualifications:

• Exposure to kernel hardening, filesystem security, and cryptographic standards (FIPS 140-2).
• Experience assisting with the hardening of Apache, Tomcat, or JBOSS in DoD environments.
• Experience with certificate management (OpenSSL), SSHD hardening, and secure communications.
• Familiarity with secure log forwarding using rsyslog and Splunk.
• Experience managing YUM/DNF, Satellite, and Red Hat subscriptions.
• Exposure to VMware vCenter/ESXi patching and snapshots.
• Knowledge of Java application compliance and middleware security.
• Experience with automation and scripting (Bash, Python, Ansible).
• Exposure to Ansible Automation Platform for compliance and configuration tasks.
• Familiarity with containerization platforms (Docker, Podman, Kubernetes).