Security Administrator PA MD and DE State

Benefits

• Health insurance

BVA Bears IT Solutions is seeking Security Administrators for PA, MD area as well as DE area. This full‑time hybrid role requires a minimum of two on‑site days each week at locations in PA, MD, and DE. The standard workday consists of 8 hours, scheduled within the window of 7:00 a.m. to 6:00 p.m. Eastern Time, Monday through Friday, excluding government holidays.

Core hours, generally 9:00 a.m. to 3:00 p.m., should be covered; however, specific core hours may vary depending on the agency’s requirements.

• Implement and maintain security policies, procedures, and standards
  ; administer policy changes and approvals.
• Operate centralized logging and monitoring
  ; maintain audit logs and evidence repositories; prepare incident documentation and reports.
• Coordinate and process HR clearances (background checks, onboarding/offboarding, access revocation) per agency requirements.
• Access control administration (RBAC/ABAC), provisioning/deprovisioning, privileged access reviews, and entitlement recertifications.
• Conduct security investigations and support incident response
  ; collect artifacts, perform triage, and document findings.
• Deliver cybersecurity awareness training and develop training materials tailored to roles/agencies; track completion and effectiveness.
• Facilitate interdepartmental security coordination (IT, HR, Legal, PMO, Business Units); lead incident investigation/reporting workflows.
• Produce proposals/whitepapers recommending security improvements, tooling, and policy changes; present to leadership and stakeholders.
• Maintain compliance with state and federal regulations and agency policies across PA, MD, and DE (e.g., access control, logging, incident documentation).

• Policy administration, logging operations, and incident documentation.
• Baseline investigations, access control administration, and training delivery.
• Interdepartmental coordination, leading incident investigation/reporting, and authoring proposals/whitepapers to improve security posture.
• Direct incident response coordination, ownership of documentation standards, and mentoring teams on investigations, access governance, and training development.

• Bachelor’s degree in Information Security, Information Systems, or related field (or equivalent experience).
• 3–5+ years’ experience in security administration within public sector or regulated environments.
• Hands‑on experience with access control administration, logging/monitoring, incident documentation, and investigations.
• Familiarity with compliance obligations and audit practices applicable to state agencies (e.g., account management, evidence retention, incident reporting).

• Knowledge of SIEM/logging platforms (e.g., Splunk, Microsoft Sentinel), identity governance (IGA), and privileged access management (PAM).
• Strong documentation and communication skills; ability to coordinate cross‑functional stakeholders during incidents.
• Experience designing and delivering cybersecurity training programs and measuring effectiveness (KPIs).

• CompTIA Security+ or CySA+.
• CISSP or SSCP.
• GIAC (e.g., GSEC, GCIA, GCIH) for incident response and monitoring.

This position is restricted to U.S. citizens only in accordance with federal contract requirements. Applicants must provide proof of U.S. citizenship (such as a U.S. passport, birth certificate, or Certificate of Naturalization) prior to employment. Non‑citizens, including lawful permanent residents (Green Card holders), are not eligible for this role.

BVA Bears IT Solutions is committed to providing equal employment opportunities. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, disability, genetic information, military/veteran status, or any other characteristic protected by law.

Flexible work from home options available.