Endpoint Security Engineer *DoD Clearance, Security + Required*

Duties & Responsibilities:
• Operate the host-based security and compliance baseline configuration, inventory, and best practices for the endpoint security solution (ESS) deployed across multiple unclassified and classified network locations supporting the implementation for McAfee/Trellix products.
• Manage a suite of products such as: Trellix Agent, ePolicy Orchestrator (ePO), Endpoint Security (ENS) which includes Threat Prevention and Firewall, Data Loss Prevention (DLP), Policy Auditor (PA), and Rogue System Detection (RSD).
• Monitor, maintain, and analyze data generated by the McAfee/Trellix ePO console (automated server tasks, trend analysis) and troubleshooting product issues, outages on systems, or errors/latency traced to ESS suite across live enclaves.
• Deploy, implement, administer, and analyze ESS suite solutions and upgrades across the environment ensuring functionality, operability, and continuity throughout.
• Coordinate ESS system activities such as deploying, configuring, monitoring, tuning, upgrading, troubleshooting, and optimizing suite components spanning local, remote, and complex environments refining system rules and alerts.
• Work collaboratively with ESS team members, admins, users, operators, integrators, and information assurance personnel configuring assets, endpoint security operations and maintaining the ESS program within multiple enclaves.
• Provide network admins and security personnel with mechanisms to prevent, detect, track, report, and remediate malicious computer-related activities and incidents across DoD networks and information systems adhering to ESS working groups and community of practices.
• Assist in meeting strategic requirements while conforming to rigid standards to aid in reducing gaps in cyber security risk exposure; Record configurations, conduct assessments, specify proper types of files organization, indexing methods, security procedures and submit suggestions to ESS schedule(s), agents, scan zones, and endpoint repository management.
• Install and patch operating systems (OS), SQL, McAfee/Trellix suite applications.
• Responsible for supporting and ensuring external deliverables: Continuous Monitoring and Risk Scoring (CMRS), DoD Patch Repository Defense Asset Distribution System (DADS), build/maintain vulnerability, hardware/software asset lists, and/or audit repositories.
• Leverage asset management solutions and enterprise network application tools such as Forescout, SolarWinds Orion, Assured Compliance Assessment Solution (ACAS) including .SC (Security Center) and Nessus scanners and/or Microsoft Endpoint Configuration Manager (MECM).
• Continuously assess current ESS implementations for scans, assets, analysis, and permissions.
• Assist with validation and sustainment of documentation such as Security Plans, Plan of Actions and Milestones (POAMs), Role Based Access Controls (RBAC), service accounts, certificates, licenses, and physical/virtual location of each component.
• Troubleshoot scheduled scans are covering 100% of intended targets ensuring timely and accurate scanning and reporting per PMO, IA and DoD policies and orders.
• Maintain ePO system tree per documentation; administer policy catalog management.
• Maintain effective communications with other external and internal teams essential to ESS operations.
• Create/maintain/implement custom security policies in line with DISA ESS best practice guidance.

Qualifications/Requirements:
• Candidate should have 5 - 7 years of hands-on experience in:
o ESS and/or McAfee/Trellix or equivalent endpoint security solution products.
o ePO Application console management.
o Windows operating systems admin support experience in mid-to-large enterprise data center environment; familiarity with network patch/update management.
o Exposure interacting with virtualized environments (VMware vSphere, ESXi).
• Demonstrate advanced diagnostics, analytical, critical thinking and troubleshooting skills.
• Passion for continuous learning in IT data protection and technical/infrastructure technologies.
• Ability to manage, evaluate and prioritize workload to accommodate and align with business objectives, security concerns, and costs.
• Knowledge of data communications, local-area networking (LAN), wide-area networking (WAN).
• Experience with adaptive multi-factor authentication: Apps, VPNs, Workstations, Mac and Windows Endpoints, Virtual Desktops and RADIUS servers is a plus.
• Experience with Department Information Systems Agency (DISA) Security Technical Implementation Guidelines (STIGs) / Security Requirements Guide (SRG), applicable to each non-classified or Secret Internet Protocol (IP) Router Network (NIPRNet, SIPRNet) environment for all ESS implementations.
• Position is subject to up to 10% travel. May be required to be called in after hours for maintenance windows and/or break fix actions.

Education/Certification(s):
• Technical degree, Associates or, bachelor's degree in computer science/information systems, Science/Engineering/Math or 5-7 years' relevant experience in Information Technology preferably within system or application administration is acceptable.
• Requires a DoD 8570.01-M Information Assurance Technical (IAT) Level II certification:
- CompTIA Security+ CE (Continuing Education)
- CompTIA Cybersecurity Analyst (CySA+) CE (Continuing Education)
- (ISC) Systems Security Certified Practitioner (SSCP)
- GIAC Global Industrial Cyber Security Professional (GICSP)
- GIAC Security Essentials Certification (GSEC)
- (ISC) Systems Security Certified Practitioner (SSCP)
• Requires a Computing Environment/Operating System (CE/OS) Defense Cyberspace Workforce Certification (DCWF) requirement(s):
- Microsoft Certified: Identity and Access Administrator Associate
- Microsoft 365 Certified: Azure Administrator Associate
• Requires Completion of the following trainings once onboarded as available from DISA:
- DISA ESS (HBSS) Trellix (McAfee) training minimum:
o ESS 201 Administrator ePO
o ESS 301 Advanced Administrator ePO
o Trellix Endpoint Security ENS 10.7 Essentials course
- DISA ESS (HBSS) Trellix (McAfee) training preferred (Sr):
o ESS 501 Analyst ePO
o Trellix ENS 10.7: NAM 4-Day Endpoint Security Administration
o McAfee ACCC-Application Control and Change Control Administration.

Clearance:
Active DoD Secret or higher required.

Additional Benefit Information:
• Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:
• Medical, dental & vision
• Critical Illness, Accident, and Hospital
• 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
• Life Insurance (Voluntary Life & AD&D for the employee and dependents)
• Short and long-term disability
• Health Spending Account (HSA)
• Transportation benefits
• Employee Assistance Program
• Time Off/Leave (PTO, Vacation or Sick Leave)

About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.