Senior Endpoint Security Solutions (ESS) Engineer

Overview

The AFINC II contract supporting the 26th Network Operations Squadron (26NOS) is searching for qualified candidates for a position of Senior Endpoint Security Solutions (ESS) Engineer. We are seeking an individual for information system administration with strong cybersecurity knowledge. The ESS Administrator will provide Information Assurance and integration support on the ESS tool suite and provide system analysis, troubleshooting and integration support. If you are seeking to work in a diverse technical environment managing enterprise-wide network equipment, please review the list of responsibilities and qualifications below.

As a dynamic systems integrator, SMS offers proven solutions in engineering, operations, cybersecurity, and digital transformation. With expertise in modernizing and optimizing legacy infrastructure and systems, ensuring operational efficiency, and designing, implementing, and managing secure environments, SMS supports business and mission goals with proficiency, quality, and integrity.

SMS has been serving the advanced information technology needs of the federal government since 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers’ missions for more than 40 years. SMS is headquartered in McLean, Virginia, with offices and on-site operations at customer locations throughout the United States. For additional information on SMS, visit www.sms.com.

Submit your resume today!

Responsibilities

• Operate the host-based security and compliance baseline configuration, inventory, and best practices for the endpoint security solution (ESS) deployed across multiple unclassified and classified network locations supporting the implementation for McAfee/Trellix products.
• Manage a suite of products such as: Trellix Agent, ePolicy Orchestrator (ePO), Endpoint Security (ENS) which includes Threat Prevention and Firewall, Data Loss Prevention (DLP), Policy Auditor (PA), and Rogue System Detection (RSD)
• Monitor, maintain, and analyze data generated by the McAfee/Trellix ePO console (automated server tasks, trend analysis) and troubleshooting product issues, outages on systems, or errors/latency traced to ESS suite across live enclaves.
• Deploy, implement, administer, and analyze ESS suite solutions and upgrades across the environment ensuring functionality, operability, and continuity throughout.
• Coordinate ESS system activities such as deploying, configuring, monitoring, tuning, upgrading, troubleshooting, and optimizing suite components spanning local, remote, and complex environments refining system rules and alerts.
• Work collaboratively with ESS team members, admins, users, operators, integrators, and information assurance personnel configuring assets, endpoint security operations and maintaining the ESS program within multiple enclaves.
• Provide network admins and security personnel with mechanisms to prevent, detect, track, report, and remediate malicious computer-related activities and incidents across DoD networks and information systems adhering to ESS working groups and community of practices.
• Assist in meeting strategic requirements while conforming to rigid standards to aide in reducing gaps in cyber security risk exposure; Record configurations, conduct assessments, specify proper types of files organization, indexing methods, security procedures and submit suggestions to ESS schedule(s), agents, scan zones, and endpoint repository management.
• Install and patch operating systems (OS), SQL, McAfee/Trellix suite applications.
• Responsible for supporting and ensuring external deliverables: Continuous Monitoring and Risk Scoring (CMRS), DoD Patch Repository Defense Asset Distribution System (DADS), build/maintain vulnerability, hardware/software asset lists, and/or audit repositories.
• Leverage asset management solutions and enterprise network application tools such as Forescout, SolarWinds Orion, Assured Compliance Assessment Solution (ACAS) including .SC (Security Center™) and Nessus® scanners and/or Microsoft Endpoint Configuration Manager (MECM)
• Continuously assesses current ESS implementations for scans, assets, analysis, and permissions.
• Assist with validation and sustainment of documentation such as Security Plans, Plan of Actions and Milestones (POAMs), Role Based Access Controls (RBAC), service accounts, certificates, licenses, and physical/virtual location of each component.
• Troubleshoot scheduled scans are covering 100% of intended targets ensuring timely and accurate scanning and reporting per PMO, IA and DoD policies and orders.
• Maintain ePO system tree per documentation; administer policy catalog management.
• Maintain effective communications with other external and internal teams essential to ESS operations.
• Create/maintain/implement custom security policies in line with DISA ESS best practice guidance.

Qualifications

Education/Training

• Technical degree, Associates or, bachelor’s degree in computer science/information systems, Science/Engineering/Math
• or 5-7 years’ relevant experience in Information Technology preferably within system or application administration

Certifications

• Requires a DoD 8570.01-M Information Assurance Technical (IAT) Level II certification:
  • CompTIA Security+ CE (Continuing Education)
  • CompTIA Cybersecurity Analyst (CySA+) CE (Continuing Education)
  • (ISC)² Systems Security Certified Practitioner (SSCP)
  • GIAC Global Industrial Cyber Security Professional (GICSP)
  • GIAC Security Essentials Certification (GSEC)
  • (ISC)² Systems Security Certified Practitioner (SSCP)

• Requires a Computing Environment/Operating System (CE/OS) Defense Cyberspace Workforce Certification (DCWF) requirement(s):
  • Microsoft Certified: Identity and Access Administrator Associate
  • Microsoft 365 Certified: Azure Administrator Associate

• Requires Completion of the following trainings once onboarded as available from DISA:
  • DISA ESS (HBSS) Trellix (McAfee) training minimum:
    • ESS 201 Administrator ePO
    • ESS 301 Advanced Administrator ePO
    • Trellix Endpoint Security ENS7 Essentials course
  • DISA ESS (HBSS) Trellix (McAfee) training preferred (Senior):
    • ESS 501 Analyst ePO
    • Trellix ENS7: NAM 4-Day Endpoint Security Administration
    • McAfee ACCC-Application Control and Change Control Administration

Clearance: 

• Active DoD Secret or higher security clearance required.

SMS is a dynamic systems integrator established in 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers’ missions for more than 47 years. Our ability to hire and retain quality people in a rapidly evolving IT market is proven through our employee retention rate averaging over 3 years. At SMS, we place a high value on quality of service, customer satisfaction, and best-of-breed policies and practices, resulting in CMMI Level 3 certification and ISO registrations including 9001:2015, 20000-1:2018, and ISO/IEC 27001:2013. SMS is headquartered in McLean, Virginia, with offices and on-site operations at customer locations throughout the United States. 

SMS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.