Posted today
Top Secret/SCI
$140,000 - $150,000
Polygraph
McLean, VA (On-Site/Office)
Zachary Piper Solutions is seeking a Trellix Endpoint Data Loss Prevention (DLP) Engineer to design, deploy, and operationalize enterprise endpoint data protection controls for a federal customer in McLean, VA. This role serves as the technical owner for Trellix EDR/DLP components, ensuring sensitive data is identified, monitored, and protected across the enterprise. The ideal candidate will have strong experience in endpoint security engineering, policy development, and integration with enterprise security platforms.
Work Environment:
Responsibilities:
Qualifications:
Preferred:
Clearance Requirement:
Compensation:
Application Period: Opens on 12/15/2025 and will be accepted for at least 30 days from the posting date.
#LI-NJ1 #LI-Onsite
Work Environment:
- On-site in McLean, VA with collaboration across security leadership and operational teams.
Responsibilities:
- Lead enterprise deployment, configuration, tuning, and maintenance of Trellix Endpoint DLP, including policy automation and agent health monitoring.
- Develop and operationalize DLP policies, rulesets, classification logic, and incident workflows aligned with data governance requirements.
- Integrate Trellix DLP with SIEM, SOAR, CASB, CMDB, and identity security tools for automated response and visibility.
- Analyze DLP telemetry, alerts, and incidents to identify data exfiltration patterns and reduce false positives.
- Partner with legal, compliance, and governance teams to define rulesets, thresholds, and exception workflows.
- Create engineering playbooks, SOPs, and runbooks for policy lifecycle management.
- Manage endpoint agent health, upgrades, and enterprise-wide platform stability.
- Conduct root-cause analysis for policy misfires, broken workflows, and endpoint inventory issues.
- Provide guidance on data classification, tagging, and secure data-handling practices aligned with Zero Trust principles.
Qualifications:
- Associate's degree and 5+ years of IT experience, or Bachelor's degree and 3+ years, or Master's degree and 1+ year; equivalent experience may be considered.
- 4+ years of experience in cybersecurity engineering, data protection, or endpoint security.
- 2+ years of experience with Trellix Endpoint DLP, Trellix ePO, and agent-based controls.
- Experience integrating DLP with SIEM, SOAR, and identity security platforms.
- Familiarity with scripting (PowerShell, Python, or Bash) for automation and workflow optimization.
- Active TS/SCI clearance with willingness to take a polygraph.
- DoD 8570 IAT Level II certification (Security+ CE, CCNA-Security, GSEC, SSCP, CySA+, etc.).
- Ability to obtain DoD 8570 Cybersecurity Service Provider - Infrastructure Support certification within 30 days of start.
Preferred:
- Knowledge of data loss prevention concepts, endpoint security controls, and data classification models.
- Strong analytical and problem-solving skills.
Clearance Requirement:
- Active TS/SCI clearance required; polygraph eligibility required.
Compensation:
- Salary Range: $140,000 - $150,000 (based on experience).
- Benefits: Cigna medical, dental, vision, 401k, 20 days paid time off, 11 federal holidays, and sick leave as required by law.
Application Period: Opens on 12/15/2025 and will be accepted for at least 30 days from the posting date.
#LI-NJ1 #LI-Onsite
group id: 10430981
