Carbon Black Endpoint Security Engineer

Carbon Black Endpoint Security Engineer

The Opportunity:

Booz Allen is seeking an endpoint security specialist to provide advanced cybersecurity support to global real-time operational activities. Critical thinking and troubleshooting skills are essential to resolving operational problems, and clear communication and briefing skills are essential when communicating with the team, its users, and individuals in leadership roles.

If you have a strong background in endpoint security, leadership experience, and a passion for driving innovation, this is an excellent opportunity to contribute to a cutting-edge cybersecurity program.

Work with us as we secure and protect our nation's cybersecurity infrastructure. 

What You’ll Work On: 

• Ensure that the customer technology solutions meet the highest standards of security, performance, and scalability with a particular focus on endpoint security.

• Provide thought leadership on emerging trends and best practices in endpoint security and ensure that the customer technology strategy reflects the latest developments in the field.

• Drive continuous improvement in the program's endpoint security operations, policies, and procedures, including incident response and vulnerability management.

• Provide technical expertise and guidance to the customer security analysts and IT teams.

• Develop, configure, and optimize policies and rules within Carbon Black products to enhance threat detection, prevention, and response capabilities.

• Develop and maintain comprehensive documentation for Carbon Black configurations, procedures, and best practices.

• Collaborate with other cybersecurity and IT teams to ensure a coordinated approach to security challenges.

• Evaluate and integrate new security technologies to enhance the organization's cybersecurity posture.

• Provide training and technical guidance to other team members on Carbon Black products and best practices.

Join us. The world can’t wait. 

You Have:   

• 5+ years of experience in endpoint security, including EDR, threat intelligence, and incident response

• 2+ years of experience with implementation, management, and maintenance of VMware Carbon Black solutions, including Carbon Black Cloud, App Control, Endpoint Detection and Response (EDR), and Capture Client

• 2+ years of experience leading migrations, deployments, and configurations of Carbon Black products across physical, virtual, and cloud environments

• Experience with cloud-based platforms such as AWS, Microsoft Azure, Google Cloud Platform, and VMware Cloud

• Experience engaging with stakeholders throughout the enterprise, including security analysts, IT teams, business leaders, and customers

• Ability to participate in on-call rotation for after-hours support

• Active TS/SCI clearance; willingness to take a polygraph exam

• HS diploma or GED and 7+ years of experience supporting IT projects and activities, Associate’s degree and 5+ years of experience supporting IT projects and activities, or Bachelor’s degree and 3+ years of experience supporting IT projects and activities

• DoD 8570 IAT Level II Certification, including CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP Certification

Nice If You Have:   

• Experience with scripting languages such as Python or PowerShell

• Experience installing and configuring various COTS products

• Experience providing physical and virtual support, maintenance, and security for Linux, Windows Servers, and Windows Desktops

• Experience working as or with a Cyber Technology Officer (CTO)

• Experience with Authentication and Account Management such as Active Directory, DNS, LDAP, TACACS, Local, or KVM

• Experience with virtualization such as VMWare, ESXi, or VCenter

• Experience tracking and resolving incidents via ticket queue

• Possession of excellent written and verbal communication and interpersonal skills

• Possession of excellent analytical skills to analyze and interpret security logs, system logs, and other security related data

• DoD 8570 Cybersecurity Provider - Infrastructure Support Certification, including CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND Certification

Clearance: 

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $75,600.00 to $172,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees. This posting will close within 90 days from the Posting Date.

Identity Statement

As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.