HBSS/MDE Administrator SME

About The Position

Requirements

• Bachelor’s degree (BS) with 12–15 years of experience, or 16+ years of Information Assurance (IA) experience in lieu of a degree
• Specific experience, education, or training may substitute for degree requirements
• Current DoD 8570 baseline certification
• Strong understanding of: Risk Management Framework (RMF), NIST, ICD, and CNSS standards
• Experience with LAN/WAN technologies and cybersecurity best practices in a classified environment, including crypto and key management
• Proven expertise with STIG compliance, SCC, STIG Viewer, and ACAS
• Expert‑level experience with: Microsoft Windows, Linux, System virtualization in a secure network environment
• Ability to work effectively in a constantly changing regulatory environment, managing short‑, mid‑, and long‑term remediation timelines
• Strong teamwork skills with the ability to adapt quickly to change
• Excellent written and verbal communication skills
• Active DoD TS/SCI Clearance required

Nice To Haves

• Security+, CISSP, or equivalent certification
• DoD Information Systems (IS) knowledge and experience
• Experience with security hardening scripting and automation
• Hands‑on experience with Ansible and/or Microsoft Endpoint Configuration Manager (MECM)
• Microsoft OS certifications (e.g., MCSE Windows or equivalent)
• Linux certifications, such as: RHCSA, CompTIA Linux+, LFCS / LFCE, Or equivalent

Responsibilities

• Lead and execute the migration from Trellix to Microsoft Defender for Endpoint (MDE)
• Administer endpoint security solutions using Microsoft Defender, Trellix (HBSS), and Microsoft Intune
• Perform continuous monitoring, analysis, and response to system, network, and security events
• Identify vulnerabilities and non‑compliance with Information Assurance (IA) policies and regulations
• Recommend and implement mitigation strategies for identified risks
• Apply, validate, and document STIG configurations
• Conduct STIG compliance checks using SCAP Compliance Checker, SCC, and STIG Viewer
• Manage vulnerability remediation and system hardening activities
• Support internal and external security audits, inspections, and continuous monitoring
• Assist in identifying, responding to, and documenting security incidents
• Develop, implement, and enforce Information Security Policies and Procedures
• Collaborate with system administrators, engineers, and compliance teams to maintain secure operations
• Manage and deploy operating system and application patches in accordance with federal policies
• Coordinate patch schedules to minimize operational impact while meeting compliance requirements
• Validate patch deployment success and troubleshoot patch‑related issues
• Harden systems using DoD and NIST security best practices to reduce attack surfaces
• Maintain configuration baselines and ensure adherence to DoD, RMF, and NIST standards

Benefits

• JCS offers enterprise‑wide solutions including cloud computing, software development, cybersecurity, digital modernization, and management consulting for the federal government.
• At JCS, we elevate our customers’ mission through the application of technology and professional services.
• Our commitment to investing in our workforce drives innovation and progress for our clients, employees, and communities.
• JCS is both a Great Place to Work and a Washington Post’s Top Places to Work certified company.