IT Systems Engineer – Classified Build Room

IT Systems Engineer – Classified Build Room 

STR is seeking a Systems Engineer to provide dedicated engineering support to our Classified IT (CIT) build room and associated lab environments. This role is hands-on and central to maintaining secure, compliant, and highly available classified infrastructures that support multiple customer programs. You will reduce technical debt, increase throughput, and help scale our classified operations while building critical organizational redundancy in key skill areas. 

What You’ll Do: 

• Engineer, maintain, and enhance classified lab images and infrastructure (primarily RHEL and Ubuntu) to meet evolving mission and compliance requirements. 

• Lead STIG review, applicability analysis, and implementation to ensure systems meet RMF and accreditation standards. 

• Work vulnerability assessment and remediation workflows for classified environments, including patch cycles, execution, and documentation. 

• Manage and sustain Linux repositories (e.g., YUM/APT), ensuring integrity, availability, and alignment with approved baselines. 

• Design, implement, and maintain automated scripts and tools to streamline recurring administration tasks and configuration management. 

• Coordinate closely with Security, IT, and program teams to align engineering work with accreditation requirements and program delivery timelines. 

• Support the Unified Linux Certification Guide and other standardization initiatives, contributing to cross-program consistency and scalability. 

• Plan and execute image certification activities, including testing, validation, and documentation for accreditation packages. 

• Assist with the setup, configuration, and sustainment of classified build room and lab infrastructure (servers, storage, networking, and virtualized environments). 

• Support the management of the CIT Test Lab, including automated patch testing and configuration validation, to reduce downtime and deployment risk. 

• Develop and maintain runbooks, engineering standards, and technical documentation to support continuity and knowledge transfer. 

• Provide escalation support for complex in-lab issues and mentor junior administrators to handle day-to-day tasks more independently. 

• Participate in continuous improvement efforts to reduce technical debt, shorten accreditation cycles, and increase reliability across classified systems. 

What You Bring: 

• 7–10+ years of hands-on experience in systems engineering or systems administration, with at least several years supporting secure or classified environments. 

• Strong expertise with Linux (RHEL and Ubuntu) systems engineering, including image creation, hardening, and lifecycle management. 

• Demonstrated experience with STIGs, RMF, and related DoD or IC cybersecurity/compliance frameworks. 

• Solid background in vulnerability management and patching across complex, multi-system environments. 

• Experience managing Linux package repositories and maintaining repository integrity in controlled networks. 

• Proficiency in scripting and automation (e.g., Ansible, Bash, Python, PowerShell, or similar) to streamline configuration, deployment, and maintenance tasks. 

• Familiarity with virtualization platforms (e.g., VMware/vSphere) and core networking concepts including routing, switching, subnetting, VLANs, firewalls 

• Strong analytical and troubleshooting skills across servers, networks, and storage, with an emphasis on root-cause analysis and durable fixes. 

• Excellent documentation and communication skills, with the ability to collaborate effectively across CIT, security, and program teams. 

• Ability to operate in a high-priority, multi-program environment, balancing direct program work with internal sustainment tasks. 

Nice to Have: 

• Experience in classified lab or build room environments, including air-gapped or highly controlled networks. 

• Background with configuration management and automation tools (e.g., Ansible, Puppet, or similar). 

• Familiarity with Git-based workflows and CI/CD concepts to support automated testing and deployment in lab settings. 

• Experience with compliance automation, security scanning tools, and accreditation package preparation. 

• Prior involvement in developing or maintaining standardized platform baselines (e.g., “gold images” or certification guides). 

Required:  

• DoD 8570/8140 certifications (Security+, CISSP, CASP, etc.). 

Why STR: 

You’ll be a key part of a high-impact classified IT organization, directly supporting mission-critical national security programs. Your work will: 

• Eliminate single-point dependencies in critical classified infrastructure. 

• Reduce technical debt and improve predictability of program delivery. 

• Enhance compliance posture and accelerate accreditation cycles. 

• Build scalable, standardized platforms that support organizational growth. 

The environment is collaborative, mission-driven, and fast-moving, with the opportunity to shape how STR delivers secure, reliable classified capabilities across multiple programs. 

 Full-Time Salary Range: $  $123,000 to $170,000

The salary range listed is based on external market data. Offers are based on factors, such as but not limited to, the candidate’s experience, education, training, key skills/critical skills, security clearances, and prevailing market and business conditions.