The Opportunity
We are seeking someone to join our NTCSS Norfolk Va team as our Senior Endpoint Security Engineer. In this role you'll serve as a key Subject Matter Expert (SME) for Host-Based Security System (HBSS) and Trellix Endpoint Security Solutions for our development network. The Senior Endpoint Security Engineer selected should possess the following technical expertise:

• Expert-level administration of McAfee HBSS ePO 5.3+ / Trellix ePO platforms
• Proven experience responding to CYBERCOM Task Orders (CTOs), AIMS, and FRAGOs
• Deep understanding of HBSS client/server logs and ePO Threat Event analysis
• Proficiency with Windows and Linux/Unix server administration
• Experience with DISA inspection procedures and DoD Application Database Management System (DADMS)

Security Architecture & Operations:

• Lead HBSS/Trellix capability management as the principal SME, providing strategic guidance across the NTCSS enterprise
• Architect and implement firewall policies for ePO servers ensuring compliance with Fleet Cyber Command directives
• Monitor and investigate ePO threat event logs daily, analyzing security incidents across managed systems
• Troubleshoot complex security issues including high CPU utilization and network vulnerabilities

Policy & Compliance:

• Develop, test, and monitor internal HBSS/Trellix TTPs and SOPs for enterprise-wide implementation
• Process Fleet Cyber Command Task Orders involving IP addresses, network domains, and firewall modifications
• Ensure STIG compliance, vulnerability remediation, and adherence to DISA OPORD 16-0080 standards
• Create software exceptions in policy catalogs while maintaining security posture

System Administration:

• Maintain ePO server patches, O/S updates, SQL databases, and HBSS/Trellix STIG compliance
• Apply security updates to Trellix point products across distributed Navy infrastructure
• Coordinate with CNDSP and external security organizations to maximize operational effectiveness
• Provide remote technical support through NAVWAR Remedy IT Service Management

Qualifications

Required:

• US Citizenship
• Active Secret clearance (ability to obtain T5)
• Education: Bachelor’s degree in Computer Science, Information Systems, or Information Technology
• Experience: 8+ years in cybersecurity with emphasis on HBSS/McAfee/Trellix environments in DoD settings
• Experience with McAfee ePO, Trellix, network infrastructure (Cisco, firewalls)
• 5+ years of technical problem-solving experience
• Experience with DoD Business IT systems
• RMF and STIG compliance expertise
• Strong technical documentation and troubleshooting skills

Certifications Required:

• IAT Level II or higher (CompTIA Security+, CEH, GSEC, CISSP, or CISM)
• DISA HBSS Admin 201 & 301 certified
• Cyber Code 52 Advanced Systems Security Engineer qualified (SECNAV M-5239.2)

Pay Range:

There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.

The proposed salary range for this position is: