EndPoint Security System (ESS) Engineer

Clearance: Secret Mandatory to Apply (Active/Valid)

OSAAVA Services is looking for a EndPoint Security System (ESS) Engineer to support the IRES Contract at Shriever SFB in Colorado Springs.

Essential Duties: The EndPoint Security System (ESS) Engineer supports the Missile Defense Agency (MDA) on the Integrated Research and Development for Enterprise Solutions (IRES) contract.

The candidate will:

· Be responsible for the design, architecture, development, integration, unit test, installation, configuration, integration, deployment and maintenance to include: ESS components, agent modules and approved policies.

· Perform troubleshooting of ESS components and applications when ePO policies are preventing application operations.

· Maintain the latest ESS configuration to address known exploits using the Host Intrusion Prevention System (HIPS).

· Develop automated reporting dashboards within the existing ePO system to provide near real-time reporting of computer system compliance information and maintain overall visibility for all connected assets.

· Proactively manage and maintain the Enterprise Security System (ESS)/Trellix infrastructure, including modifying operational parameters (filters, signatures, rules) to ensure optimal performance and security.

Essential Experience:

Must have one of the following combinations of education and experience:

• HS Diploma (or GED) and 10 years of general experience;
• Associate's degree and 8 years of general experience;
• Bachelor's degree and 6 years of general experience;
• Master's degree and 4 years of general experience
• Must have 6 years of directly related experience in information technology
• Must have experience with DoD cybersecurity processes and procedures
• Must have experience with cyber tools (e.g. ACAS, HBSS, ArcSight)
• Must have a current DoD 8570.01M IAT Level II certification
• Must have an active DoD Secret Security Clearance

Essential Qualifications / Certifications:

• CompTIA Security+

Preferred but Not Essential Criteria (Experience, Qualifications, Certifications):

• Experience integrating Trellix ESS with ACAS or other vulnerability scanners for alert enrichment
• Experience with Elastic tool suite
• Knowledge of Syslog forwarding, integration with SIEMs like Splunk or ELK
• Familiarity with Active Directory GPOs as they relate to endpoint agent deployment and policy enforcement
• Understanding of ENS Policy Customization, including Adaptive Threat Protection (ATP) tuning
• Ability to produce artifacts for RMF controls
• Familiarity with cloud-hosted endpoints or hybrid environments (Azure/AWS ) with Trellix agent presence
• CompTIA CASP+, CySA+
• Experience mentoring junior analysts
• Proficiency in writing SOPs/training for endpoint defense

Company Description

Cyber Security company, specializing in specific cyber defense activities and IT services. We are a SDVOSB.