Endpoint Security Engineer

About The Position

Requirements

• Bachelor of Arts/Bachelor of Science
• 5+ years of related Cyber Experience experience
• Experience with Elastic and Windows Defender
• Experience implementing CNSSI 1253 controls to maintain system RMF compliance
• Experience interpreting and implementing STIGs to ensure system Cyber compliance
• Experience implementing and complying with DoD, CYBCERCOM, and PM directives for maintaining system security compliance.
• Experience utilizing ACAS to interpret results and create customized reports.
• Top Secret Security Clearance
• US citizenship required
• Candidate must be ale to pass German TESA
• Must possess a DoD 8570 IAT Level II or higher certification.
• Candidate must obtain ITIL Foundation certification within 90 days of hire.
• German TESA requirements: A bachelors degree plus 3 years of recent specialized experience, OR; An associates degree plus 7 years of recent specialized experience, OR; A major certification plus 7 years of recent specialized experience, OR; 11 years of recent specialized experience.

Responsibilities

• Oversee the JCND E-MPN Elastic and Windows Defender enclave endpoint security infrastructure sustainment, maintenance, and advanced configuration (policy management, database administration, and security management tools).
• Support the incident response efforts including, but not limited to, investigation, artifact collection, escalation, containment, recovery, root-cause analysis, and drafting of incident reports.
• Support the reporting, documentation, and investigation of all security-related incidents, and the development and implementation of corrective measures.
• Support assessments of threats and vulnerabilities; determine deviations from acceptable configurations, enterprise, or local policy; assess the level of risk; develop and/or recommend appropriate mitigation countermeasures in operational and non-operational situations.
• Develop Elastic dashboards, complex queries, event correlation, data enrichment, generation of alerts, and support the MND CTI analyst in threat hunting activities.
• Support the establishment and mature security hardening standards and advocate for changes in policies that support organizational cyber security initiatives, enhancements, and drive process improvement efforts.
• Attend internal and external meetings and serves as an endpoint security SME and participate in working group sessions to share knowledge, idea generation for advancing security capabilities and achieving efficiencies.
• Understand Program of Record (PoR) Program Management Offices (PMO) endpoint security requirements and support the USAREUR-AF G6 Cyber Security Division in helping with artifacts for the ATC/ATO processes.
• Triage cybersecurity incident response from initial to end and understanding CJCSM 6510.01B
• Support in developing, planning, coordinating, delivering and/or evaluating training courses, methods, and techniques as appropriate for team members within pertinent subject domain.
• Work with both the software vendor and the customer to research, analyze, and implement enterprise-wide security solutions/capabilities/enhancements to support customer business/mission goals and objectives.
• Partner with Cyber Security Service Provider, System Administrators, Network Engineers in assisting with the design, analysis, testing, and implementation of state-of-the-art secure architectures.
• Being a self-starter who’s able to work in both independent and team environments while building work relationships with SMEs across divisions. Additionally, must be comfortable with cyber security and able to brief issues to the customer.

Benefits

• Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match.
• To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave.
• To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available.