Endpoint Security Solutions (ESS) Engineer

Advance how our customers operate while you advance your career. Join GDIT as an Endpoint Security Solutions (ESS) Engineer and build an impactful career in enterprise IT, collaborating with people who are driven and resourceful like you.

MEANINGFUL WORK AND PERSONAL IMPACT:

As an ESS Systems Engineer, the work you’ll do at GDIT will be impactful to the mission of USCENTCOM. You will play a crucial role in supporting cybersecurity operations and enterprise endpoint protection on the CITS contract

The ESS Systems Engineer is responsible for engineering, deploying, integrating, and sustaining USCENTCOM’s Endpoint Security Solutions across enterprise networks. This role ensures comprehensive protection of workstations, servers, and mission systems through the implementation and maintenance of endpoint security technologies such as endpoint detection and response (EDR), host-based intrusion prevention (HIPS), endpoint encryption, device control, and vulnerability management agents. The engineer will support capability development, lifecycle management, and modernization efforts across both pre-production and production environments.

Duties and Responsibilities:

• Deploy, configure, and maintain endpoint security solutions including EDR, HIPS, encryption, device control, and vulnerability management agents.

• Monitor endpoint security platforms for performance, health, and security events; provide proactive recommendations for optimization.

• Analyze endpoint alerts, suspicious activity, and security incidents; support triage, investigation, and remediation.

• Integrate endpoint security solutions with enterprise systems, SIEM platforms, and cybersecurity workflows.

• Support lab-based testing, validation, and integration of new endpoint security technologies prior to enterprise rollout.

• Develop and maintain documentation for endpoint security configurations, SOPs, and troubleshooting procedures.

• Collaborate with cybersecurity, network, and systems teams to implement enterprise-wide endpoint protection enhancements.

• Assist in vulnerability management activities, including agent deployment, scanning, reporting, and remediation coordination.

• Participate in security audits, compliance reviews, and accreditation activities related to endpoint security.

• Provide technical guidance and mentorship to junior team members and other IT personnel.

• Engage with vendors to resolve technical issues, evaluate new capabilities, and support lifecycle management.

• Conduct system upgrades, patching, and maintenance to ensure endpoint security tools remain current and effective.

• Support enterprise modernization initiatives by identifying opportunities to automate, streamline, and enhance endpoint security operations.

• Produce reports, dashboards, and data sets to support leadership decision making and continuous improvement efforts.

• Assist in the design and implementation of new endpoint security capabilities to strengthen enterprise defense.

• Participate in capacity planning for endpoint security tools and supporting infrastructure.

• Continuously evaluate and recommend improvements to enhance endpoint protection, performance, and availability.

• Develop and deliver training sessions for staff on endpoint security best practices and secure configuration management.

• Support lifecycle testing, integration, and validation of emerging endpoint security technologies within lab environments.

• Contribute to cybersecurity modernization efforts by identifying innovative approaches to improve automation, orchestration, and operational efficiency.

WHAT YOU’LL NEED TO SUCCEED:

Bring your technology expertise and drive for innovation to GDIT. The Systems Engineer Principal must have:

• Certification: Applicable DoD 8140 / DoD 8570 IAT Level II or III Certification

• Experience: 8+ years of related experience

• Required Skills:

  • Hands on experience with endpoint security solutions such as EDR, HIPS, encryption, device control, and vulnerability management agents.

  • Strong understanding of endpoint protection strategies, cybersecurity best practices, and industry frameworks.

  • Experience supporting large scale enterprise environments, including Windows and Linux endpoints.

  • Ability to analyze endpoint security events, identify risks, and support incident response activities.

  • Experience deploying and maintaining virtual appliances and servers supporting endpoint security tools.

  • Strong documentation skills for configuration guides, SOPs, and troubleshooting procedures.

  • Ability to collaborate effectively with cross functional IT and cybersecurity teams.

• Desired Skills:

  • Experience working with USCENTCOM or other DoD organizations.

  • Familiarity with enterprise EDR platforms, host based security tools, and endpoint management systems.

  • Experience with automation and orchestration tools (e.g., Ansible, PowerShell, Python).

  • Knowledge of cloud-based endpoint security concepts and hybrid cloud integrations.

  • Ability to support end to end endpoint security engineering across pre production and production networks.

  • CrowdStrike Certified Falcon Responder (CCFR)

  • Trellix/McAfee Certified Product Specialist (ENS, ePO)

  • Tanium Certified Operator or Tanium Certified Administrator

• Security clearance level: TS/SCI clearance required

• US citizenship required

GDIT IS YOUR PLACE:

At GDIT, the mission is our purpose, and our people are at the center of everything we do.

• Growth: AI-powered career tool that identifies career steps and learning opportunities

• Support: An internal mobility team focused on helping you achieve your career goals

• Rewards: Comprehensive benefits and wellness packages, 401K with company match, competitive pay and paid time off

• Community: Award-winning culture of innovation and a military-friendly workplace

OWN YOUR OPPORTUNITY

Explore an enterprise IT career at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your desire to drive operations forward.