EndPoint Security System (ESS) Engineer

Job Description

Clearance: Secret Mandatory to Apply (Active/Valid)

We do not sponsor work visas: US Citizenship required

OSAAVA Services is looking for a EndPoint Security System (ESS) Engineer to support the IRES Contract at Shriever SFB in Colorado Springs.

Essential Duties: The EndPoint Security System (ESS) Engineer supports the Missile Defense Agency (MDA) on the Integrated Research and Development for Enterprise Solutions (IRES) contract.

The candidate will:

· Be responsible for the design, architecture, development, integration, unit test, installation, configuration, integration, deployment and maintenance to include: ESS components, agent modules and approved policies.

· Perform troubleshooting of ESS components and applications when ePO policies are preventing application operations.

· Maintain the latest ESS configuration to address known exploits using the Host Intrusion Prevention System (HIPS).

· Develop automated reporting dashboards within the existing ePO system to provide near real-time reporting of computer system compliance information and maintain overall visibility for all connected assets.

· Proactively manage and maintain the Enterprise Security System (ESS)/Trellix infrastructure, including modifying operational parameters (filters, signatures, rules) to ensure optimal performance and security.

Essential Experience:

Must have one of the following combinations of education and experience:

HS Diploma (or GED) and 10 years of general experience;

Associate's degree and 8 years of general experience;

Bachelor's degree and 6 years of general experience;

Master's degree and 4 years of general experience

Must have 6 years of directly related experience in information technology

Must have experience with DoD cybersecurity processes and procedures

Must have experience with cyber tools (e.g. ACAS, HBSS, ArcSight)

Must have a current DoD 8570.01M IAT Level II certification

Must have an active DoD Secret Security Clearance

Essential Qualifications / Certifications:

CompTIA Security+

Preferred but Not Essential Criteria (Experience, Qualifications, Certifications):

Experience integrating Trellix ESS with ACAS or other vulnerability scanners for alert enrichment

Experience with Elastic tool suite

Knowledge of Syslog forwarding, integration with SIEMs like Splunk or ELK

Familiarity with Active Directory GPOs as they relate to endpoint agent deployment and policy enforcement

Understanding of ENS Policy Customization, including Adaptive Threat Protection (ATP) tuning

Ability to produce artifacts for RMF controls

Familiarity with cloud-hosted endpoints or hybrid environments (Azure/AWS ) with Trellix agent presence

CompTIA CASP+, CySA+

Experience mentoring junior analysts

Proficiency in writing SOPs/training for endpoint defense

Company Description

Cyber Security company, specializing in specific cyber defense activities and IT services. We are a SDVOSB.Company Description

Cyber Security company, specializing in specific cyber defense activities and IT services. We are a SDVOSB.

Full-time