Cybersecurity End Point Engineer

Job ID: 2304079-2923

• Provide Engineering Solutions of Endpoint Security System (ESS)/Host Based Security System (HBSS) and Assured Compliance Assessment Solution (ACAS)
• Configure & validate secure system & physical controls; test security products & systems to detect security vulnerabilities
• Troubleshooting, metrics collection, maintenance support, and the timely entry of communication and tasking into the ticket management tool (ITSM/Helix)
• Analyze, harden and validate compliance across hardware, software, and application layers
• Conduct analyses of log files, to include individual host logs, network traffic logs, firewall logs, intrusion detection system logs, and aggregate Splunk data
• Execute policy development and engineer upgrade solutions and maintain system compliance within ESS technology area

• Must have experience maintaining, deploying, and administering HBSS tools (primary responsibility)
• Must have experience with End point operations (EPo) for 30,000+ users
• Experience with systems in large scale node environments
• Experience conducting analyses of log files using tools such as Splunk
• Experience utilizing DISA STIGs to harden and secure Windows and/or Linux systems
• Understanding of Application whitelisting and implementation methods

• Must have one (1) current IAT-III certification (i.e. CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, OR CCSP)
• Must be able to obtain both the DISA ESS Admin (201) AND DISA ESS Advanced (301) certifications within six (6) months of hire

• Must be able to obtain a full Secret Clearance; Interim Secret required prior to start, SAIC will help to obtain
• Must be a current US Citizen