McAfee HBSS Engineering & Administration, TS/SCI with Polygraph

We are seeking highly motivated engineers with a thirst for learning, in support of a geographically dispersed, state of the art systems that seamlessly integrate Linux and Microsoft services. Candidates with proven depth operating and optimizing Host Based Security System (McAfee) and Endpoint Security Solution in a Microsoft Windows Server environment will be positioned for success in our organization. Strong working knowledge of HBSS and the McAfee solution suite is critical.

The selected candidate will design solutions within a large-scale multi-domain enterprise Windows Server & Desktop environments (as well as select hybrid domains with RHEL integration). Embracing the DevOps model, engineers will be responsible for supporting their solutions throughout the entire IT project lifecycle, to include refining requirements, creating design documentation, creating installation instructions and deployment plans, and providing O&M support. Project assignments will vary based on skill level, and may include engineering geographically dispersed services, integrating services into public, private and hybrid cloud environments, engineering solutions to be deployed via automated CM tools, and hardening the solutions to address security and SCAP compliance.

RESPONSIBILITIES:

• Provide McAfee HBSS ESS support across a variety of environments across multiple classification levels
• Provide performance tuning to systems and troubleshoot HBSS components which span several large and complex environments
• Deploy, maintain, and tune McAfee clients to meet current and future standards
• Monitor HBSS software to ensure that clients/servers are operational and reporting properly
• Ensure the environment is updated according to DoWD standards and guidelines
• Maintain and troubleshoot the management systems

REQUIRED SKILLS:

• Experience in McAfee HBSS ESS design and management
• Expert-level knowledge of McAfee ePO
• Experience with HBSS modules, including McAfee Agent (MA), Host Intrusion Prevention System (HIPS), Data Loss Prevention (DLP), Policy Auditor (PA), VirusScan Enterprise (VSE), Rogue System Detection (RSD), Asset Baseline Monitor (ABM), and Asset Configuration Compliance Module (ACCM
• Experience with analyzing policies for HIPS firewall, HIPS application whitelisting, HIPS intrusion prevention exclusions, DLP exclusions, and VSE exclusions
• Knowledge of using and applying vulnerability assessment tools, including Nessus, Security Content Automation Protocol (SCAP), Secure Technical Implementation Guides (STIGs), checklists, and Security Requirements Guides (SRG)
• Experience with ACAS SC and ACAS Nessus scanner administration and maintenance
• Additional experience engineering or administering Microsoft or Red Hat Enterprise Linux environments is a plus
• Additional experience engineering or administering workloads in cloud PaaS solutions such as AWS or Azure is a plus
• Experience with managing work tasks via tools such as JIRA and ServiceNow
• CompTIA Security+ or similar for IAT Level II DoW 8570 certification
• Completion of DoW 301 HBSS Advanced Administrator Course a plus
• Completion of DoW 501 HBSS Analyst Course

WHAT YOU’LL NEED TO SUCCEED:

• Education: Bachelor of Arts/Bachelor of Science in a related field
• Required Experience: 10+ years of related experience
• Security Clearance Level: TS/SCI with Polygraph
• Location: On Customer Site
• US Citizenship Required

GDIT IS YOUR PLACE
At GDIT, the mission is our purpose, and our people are at the center of everything we do.

• Growth: AI-powered career tool that identifies career steps and learning opportunities
• Support: An internal mobility team focused on helping you achieve your career goals
• Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
• Community: Award-winning culture of innovation and a military-friendly workplace

OWN YOUR OPPORTUNITY
Explore a career in cyber at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.