Endpoint Security Services (ESS) Engineer

General Dynamics Information Technology (GDIT) has an immediate opening for an Endpoint Security Services (ESS) Engineer supporting the CITS contract for USCENTCOM. The position is based in Tampa, Florida. This is a high-impact role within our endpoint security infrastructure, focusing on designing, engineering, and enhancing the security posture of endpoints across a large-scale enterprise environment.

As the ESS Engineer, you will be responsible for the design, architecture, engineering, and optimization of endpoint security solutions to protect the organization's data and assets from cyber threats. You will work closely with system administrators, architects, and other IT engineers to implement and maintain endpoint security technologies, ensuring robust protection across a vast network of assets.

WHAT YOU WILL DO:

Duties and Responsibilities:

We are seeking a highly skilled ESS Engineer with advanced expertise in engineering and implementing endpoint security solutions. The ESS Engineer will be responsible for:

• Designing and Engineering Security Solutions:
  Lead the design, architecture, and deployment of Trellix (McAfee) endpoint security solutions, including Endpoint Security (ENS), Data Loss Prevention (DLP), McAfee Agent (MA), Rogue System Detection (RSD), Policy Auditor (PA), and Application Control (Solidcore).
• Infrastructure Optimization:
  Engineering the optimization of endpoint security solutions to ensure high availability, scalability, and resource efficiency across more than 15,000 assets and 19 ePolicy Orchestrator (ePO) servers.
• Advanced Troubleshooting & Issue Resolution:
  Investigate complex issues related to endpoint security technologies, leveraging advanced diagnostic tools and methods to implement permanent solutions.
• Security Policy Development & Implementation:
  Engineer and enforce endpoint security policies, configurations, and compliance requirements. Collaborate with stakeholders to refine security policy architecture to align with evolving threats and organizational goals.
• Automation & Scripting:
  Develop automation scripts and solutions (e.g., PowerShell, Python) to enhance the efficiency of endpoint security management, reducing manual intervention and improving system performance.
• System Integration & Engineering Support:
  Work cross-functionally with network engineers, systems engineers, and administrators to integrate endpoint security tools into the overall IT infrastructure.
• Continuous Improvement:
  Identify and implement new endpoint security technologies, tools, and techniques to enhance security and system performance.
• Documentation & Reporting: Engineer comprehensive technical documentation and security reports related to endpoint security solutions, system configurations, and incident responses.

Additional Responsibilities:

• Design and implement backup and disaster recovery strategies for endpoint security infrastructure components.
• Evaluate and recommend new endpoint security solutions and technologies based on performance, scalability, and security features.
• Provide technical guidance and mentorship to junior engineers and system administrators.
• Assist in coordinating and supporting large-scale security exercises and vulnerability assessments.

WHAT YOU WILL NEED:

Education and/or Certifications:

• EDUCATION AND EXPERIENCE: BA/BS degree or equivalent work experience, 6 + years of work experience overall

Required:

• DoD 8140 or DoD 8570 Certification

Desired:

• ITIL 4 Foundation Certification

Required Skills:

• In-depth experience designing, engineering, and optimizing endpoint security solutions (e.g., ENS, DLP, MA, RSD, PA, Solidcore) within large-scale enterprise environments.
• Strong experience with ePolicy Orchestrator (ePO) administration and troubleshooting.
• Advanced knowledge of endpoint security best practices, threat landscape, and mitigation strategies.
• Solid understanding of security policies, regulatory compliance, and standards within DoD and enterprise environments.
• Proficiency in PowerShell or other scripting languages for automation and troubleshooting.

Desired Skills:

• Familiarity with the design and implementation of endpoint security architectures for highly complex environments, particularly within USCENTCOM or similar military networks.
• Experience with vulnerability management tools and techniques.
• Ability to lead endpoint security initiatives from a technical perspective and mentor junior engineers.

Clearance Requirement:

• Active TS/SCI clearance required.

Travel Requirements:

• Up to 10% travel for USCENTCOM exercise support, including potential travel to OCONUS locations.

WHAT GDIT CAN OFFER YOU:

• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career
• Professional growth opportunities including paid education and certifications
• Cutting-edge technology and the ability to make a real impact on the world around you.

Not sure this job's the one for you? Check out our other openings at gdit.com/careers.

Do you have a friend or colleague this posting describes? Let them know about the opportunity by clicking "Share."

#ARMA

#CENTCOMCITS

#GDITPRIORITY

Work Requirements