Systems Analyst I (CIS Baseline & Server Image Security Engineer)
Job Location:
Job Location:
Austin, TX - USA
Monthly Salary:
Not Disclosed
Monthly Salary:
Posted on:
1 hour ago
Posted on:
Vacancies:
1 Vacancy
Vacancies:
Job Summary
### **Job Description: Systems Analyst I (CIS Baseline & Server Image Security Engineer)**
**Job ID:** SCTASK1601332
**Client:** TxDOT
**Employment Type:** Full Time / Contract
**Location:** Austin Texas - STRICTLY ONSITE (Local candidates only)
**Work Schedule:** Monday through Friday 8:00 AM to 5:00 PM (CT). Excluding Texas state holidays.
**Job ID:** SCTASK1601332
**Client:** TxDOT
**Employment Type:** Full Time / Contract
**Location:** Austin Texas - STRICTLY ONSITE (Local candidates only)
**Work Schedule:** Monday through Friday 8:00 AM to 5:00 PM (CT). Excluding Texas state holidays.
---
### **Submission Requirement**
* **Photo ID Required:** For security purposes every resume submission must include a copy of the candidates government-issued photo ID placed at the very beginning of the resume file. Submissions without a photo ID will be automatically disqualified.
* **Expenses:** All travel per diem parking and living expenses are entirely at the candidates expense.
* **Photo ID Required:** For security purposes every resume submission must include a copy of the candidates government-issued photo ID placed at the very beginning of the resume file. Submissions without a photo ID will be automatically disqualified.
* **Expenses:** All travel per diem parking and living expenses are entirely at the candidates expense.
---
### **Role Summary**
The CIS Baseline & Server Image Security Engineer is responsible for designing maintaining and implementing Center for Internet Security (CIS) aligned security baselines and hardened server images for enterprise server operating systems. This role focuses on modern server platforms including Windows Server 2025 and Red Hat Enterprise Linux (RHEL).
The position works closely with the Cyber Security Operations Center (CSOC) and multiple infrastructure and engineering teams to ensure CIS benchmarks security baselines and gold images remain current approved and aligned with the required security posture. The role ensures that server operating system images reflect approved security controls while remaining operationally supportable.
---
### **Key Responsibilities**
* **Baseline Development:** Build and maintain CIS-based security baselines for Windows Server and RHEL translating benchmarks into GPOs local policies and configuration standards. Maintain versioned documentation and approval records.
* **Image Integration:** Integrate approved baselines into gold server images and post-build processes. Validate consistent application across new deployments and update images as OS releases or CIS versions change.
* **Security Collaboration:** Partner with CSOC and SRM to review baseline changes validate security posture and resolve configuration findings.
* **Cross-Functional Coordination:** Coordinate with Server Operations Platform Engineering Change Management and Vulnerability Management on baseline impacts remediation and platform alignment.
* **Risk Management:** Identify and document baseline exceptions risk decisions and compensating controls in line with governance processes.
* **Image Integration:** Integrate approved baselines into gold server images and post-build processes. Validate consistent application across new deployments and update images as OS releases or CIS versions change.
* **Security Collaboration:** Partner with CSOC and SRM to review baseline changes validate security posture and resolve configuration findings.
* **Cross-Functional Coordination:** Coordinate with Server Operations Platform Engineering Change Management and Vulnerability Management on baseline impacts remediation and platform alignment.
* **Risk Management:** Identify and document baseline exceptions risk decisions and compensating controls in line with governance processes.
---
### **Candidate Skills and Qualifications**
**Required Experience & Skills:**
* Hands-on experience developing and maintaining CIS security baselines for server operating systems.
* Strong working knowledge of Windows Server security configuration including GPO-based enforcement.
* Strong working knowledge of Linux security hardening particularly Red Hat Enterprise Linux (RHEL).
* Proven experience embedding and integrating security baselines into server images or standardized builds.
* Ability to work cross-functionally with security infrastructure and engineering teams.
* Strong documentation communication organizational and cross-functional collaboration skills.
* Hands-on experience developing and maintaining CIS security baselines for server operating systems.
* Strong working knowledge of Windows Server security configuration including GPO-based enforcement.
* Strong working knowledge of Linux security hardening particularly Red Hat Enterprise Linux (RHEL).
* Proven experience embedding and integrating security baselines into server images or standardized builds.
* Ability to work cross-functionally with security infrastructure and engineering teams.
* Strong documentation communication organizational and cross-functional collaboration skills.
**Preferred Experience & Skills:**
* Experience supporting and maintaining CIS baselines within a government highly regulated or large enterprise environment.
* Prior experience collaborating directly with a Cyber Security Operations Center (CSOC).
* Familiarity with vulnerability management configuration compliance or IT audit activities.
* Experience managing and supporting multiple server OS versions and navigating platform lifecycle transitions.
* Experience supporting and maintaining CIS baselines within a government highly regulated or large enterprise environment.
* Prior experience collaborating directly with a Cyber Security Operations Center (CSOC).
* Familiarity with vulnerability management configuration compliance or IT audit activities.
* Experience managing and supporting multiple server OS versions and navigating platform lifecycle transitions.
---
### **Deliverables & Success Measures**
* Delivery of approved versioned CIS baselines for all supported server operating systems.
* Secure standardized server OS images that consistently reflect current CIS benchmarks.
* Thoroughly documented baseline updates and exception decisions aligned with CSOC and ITD standards.
* Measurable improvement in consistency and overall security posture across enterprise server platforms.
* Secure standardized server OS images that consistently reflect current CIS benchmarks.
* Thoroughly documented baseline updates and exception decisions aligned with CSOC and ITD standards.
* Measurable improvement in consistency and overall security posture across enterprise server platforms.
