Remote, United States May 27 Not disclosed
SELinux & Linux Security Administration Jobs
SELinux (Security-Enhanced Linux) is a mandatory access control system built into the Linux kernel that enforces fine-grained security policies. Expertise in SELinux is particularly valued in government, defence, healthcare, and financial services sectors where regulatory compliance and system hardening are mandatory.
New York City, New York, United States May 26 $230k – $310k
Fort Meade, Maryland, United States May 21 Not disclosed
Fort Meade, Maryland, United States May 21 Not disclosed
Fort Meade, Maryland, United States May 21 Not disclosed
Reston, Virginia, United States May 21 Not disclosed
Remote, Canada May 21 Not disclosed
N
Torrance, California, United States May 21 Not disclosed
Pangyo, Gyeonggi, South Korea May 21 Not disclosed
Bengaluru, Karnataka, India May 21 Not disclosed
Dublin, Ireland May 5 Not disclosed
+16
Frequently Asked Questions
-
SELinux is a kernel-level mandatory access control (MAC) implementation originally developed by the NSA and Red Hat. It enforces security policies that restrict what processes can do, even if they are running as root. Linux security engineers, RHEL/CentOS system administrators, and professionals working in regulated industries (government, defence, healthcare, finance) are expected to be proficient with SELinux policy management.
-
Both are Linux MAC systems but differ in approach. SELinux uses labels on every file, process, and socket to enforce type enforcement policies, it is more granular and powerful but more complex to manage. AppArmor uses path-based profiles that are easier to write and debug, and is the default on Ubuntu and SUSE. RHEL, Fedora, and CentOS use SELinux by default. Both are acceptable in job postings, but SELinux is more common in enterprise and government contexts.
-
Core expectations include understanding SELinux modes (enforcing, permissive, disabled), reading audit logs and using audit2allow to generate policies, writing and loading custom policy modules with semodule, managing file contexts with restorecon and chcon, and understanding booleans. Senior roles may require writing type enforcement (TE) policies from scratch using the SELinux policy development tools.
-
The RHCE (Red Hat Certified Engineer) exam includes SELinux troubleshooting and policy management. The GIAC GCUX (GIAC Certified Unix Security Administrator) covers SELinux in depth. CompTIA Linux+ also tests basic SELinux concepts. For government roles, DoD 8570/8140-compliant certifications (Security+, CISSP, CASP+) are often paired with hands-on SELinux experience.