Type of Requisition:

Regular

Clearance Level Must Currently Possess:

Top Secret SCI + Polygraph

Clearance Level Must Be Able to Obtain:

Top Secret SCI + Polygraph

Public Trust/Other Required:

None

Job Family:

Cyber and IT Risk Management

Job Qualifications:

Skills:

Host Intrusion Prevention System (HIPS), McAfee HBSS, Vulnerability Assessments

Certifications:

None

Experience:

10 + years of related experience

US Citizenship Required:

Yes

Job Description:

We are seeking highly motivated engineers with a thirst for learning, in support of a geographically dispersed, state of the art systems that seamlessly integrate Linux and Microsoft services. Candidates with proven depth operating and optimizing Host Based Security System (McAfee) and Endpoint Security Solution in a Microsoft Windows Server environment will be positioned for success in our organization. Strong working knowledge of HBSS and the McAfee solution suite is critical.

The selected candidate will design solutions within a large-scale multi-domain enterprise Windows Server & Desktop environments (as well as select hybrid domains with RHEL integration). Embracing the DevOps model, engineers will be responsible for supporting their solutions throughout the entire IT project lifecycle, to include refining requirements, creating design documentation, creating installation instructions and deployment plans, and providing O&M support. Project assignments will vary based on skill level, and may include engineering geographically dispersed services, integrating services into public, private and hybrid cloud environments, engineering solutions to be deployed via automated CM tools, and hardening the solutions to address security and SCAP compliance.

RESPONSIBILITIES:

• Provide McAfee HBSS ESS support across a variety of environments across multiple classification levels
• Provide performance tuning to systems and troubleshoot HBSS components which span several large and complex environments
• Deploy, maintain, and tune McAfee clients to meet current and future standards
• Monitor HBSS software to ensure that clients/servers are operational and reporting properly
• Ensure the environment is updated according to DoWD standards and guidelines
• Maintain and troubleshoot the management systems

REQUIRED SKILLS:

• Experience in McAfee HBSS ESS design and management
• Expert-level knowledge of McAfee ePO
• Experience with HBSS modules, including McAfee Agent (MA), Host Intrusion Prevention System (HIPS), Data Loss Prevention (DLP), Policy Auditor (PA), VirusScan Enterprise (VSE), Rogue System Detection (RSD), Asset Baseline Monitor (ABM), and Asset Configuration Compliance Module (ACCM
• Experience with analyzing policies for HIPS firewall, HIPS application whitelisting, HIPS intrusion prevention exclusions, DLP exclusions, and VSE exclusions
• Knowledge of using and applying vulnerability assessment tools, including Nessus, Security Content Automation Protocol (SCAP), Secure Technical Implementation Guides (STIGs), checklists, and Security Requirements Guides (SRG)
• Experience with ACAS SC and ACAS Nessus scanner administration and maintenance
• Additional experience engineering or administering Microsoft or Red Hat Enterprise Linux environments is a plus
• Additional experience engineering or administering workloads in cloud PaaS solutions such as AWS or Azure is a plus
• Experience with managing work tasks via tools such as JIRA and ServiceNow
• CompTIA Security+ or similar for IAT Level II DoW 8570 certification
• Completion of DoW 301 HBSS Advanced Administrator Course a plus
• Completion of DoW 501 HBSS Analyst Course

WHAT YOU9LL NEED TO SUCCEED:

• Education: Bachelor of Arts/Bachelor of Science in a related field
• Required Experience: 10+ years of related experience
• Security Clearance Level: TS/SCI with Polygraph
• Location: On Customer Site
• US Citizenship Required

The likely salary range for this position is $142,792 - $184,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours:

40

Travel Required:

None

Telecommuting Options:

Onsite

Work Location:

USA VA Chantilly

Additional Work Locations:

Total Rewards at GDIT:

Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.