Endpoint Security Engineer (Trellix Administrator)

About The Position

Requirements

• Top Secret/SCI security clearance.
• Bachelor’s degree in IT Technology, Computer Science, or related field with 5+ year's of experience. Degree may be substituted with additional years of experience.
• DOD 8140 (8570) IAT Level II (Security+ or equivalent).
• 2 years of Enterprise Trellix/McAfee administration experience.
• Excellent problem-solving skills and the ability to work effectively in a team, ops-focused environment.
• Capability to perform shift work as part of our 24/7 operations.
• Experience with Linux operating systems and Windows command line/PowerShell.
• Knowledge of common enterprise security devices and tools.
• Experience with SIEM solutions, preferably Elastic Security.
• Experience using a ticketing system.
• Basic understanding of Microsoft SQL Server.

Nice To Haves

• Experience utilizing Tanium for security monitoring.
• AF DCGS experience.
• Knowledge of security best practices and standards, including NIST, ISO, and SOC operations.
• Knowledge of network security and incident response procedures.
• Strong analytical and problem-solving skills.
• Ability to work independently and as part of a team.
• Excellent communication and collaboration skills.

Responsibilities

• Implement and maintain Trellix products and policies on Windows and Linux clients utilizing ePolicy Orchestrator.
• Monitor security systems, analyze potential threats and vulnerabilities to client systems.
• Maintain Tanium software and utilize dashboards to assist Cyber investigations.
• Provide guidance for securing information systems and support cyber vulnerability penetration assessments.
• Provide direct support as a technical representative for ensuring security is integrated throughout the lifecycle of systems.
• Create and maintain security incident reports and dashboards.
• Stay current with emerging threats and vulnerabilities and recommend security improvements.
• Demonstrate knowledge of incident response processes (detection, triage, incident analysis, remediation, and reporting).
• Ensure security testing and evaluations are completed and documented.

Benefits

• Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
• We offer competitive compensation, benefits and learning and development opportunities.
• Our broad and competitive mix of benefits options is designed to support and protect employees and their families.
• At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.