Posted today
Top Secret/SCI
$130,000 - $150,000
Polygraph
McLean, VA (On-Site/Office)
Zachary Piper Solutions is seeking an Endace Implementation & Sustainment Engineer to architect, deploy, integrate, and operate Endace packet capture, monitoring, and network recording platforms across a large, distributed enterprise. This role owns the end-to-end lifecycle for Endace systems—including design, installation, configuration, maintenance, and long-term optimization—while integrating the platform with SIEM/SOAR, detection engineering, analytics tooling, and broader Zero Trust security controls.
Clearance : Top Secret/SCI clearance with CI poly
Location: McLean, VA
Schedule: Fully on site
Responsibilities of the Endace Engineer:
· Lead the design, deployment, and configuration of Endace appliances for enterprise-scale packet capture.
· Developing packet capture strategies aligned to network architecture, mission requirements, and Zero Trust visibility controls.
· Building high-availability, scalable, and resilient Endace clusters across data centers and cloud-connected environments.
· Integrating Endace with analytics ecosystems (SIEM, SOAR, NDR, EDR, threat intel, investigation platforms).
· Troubleshooting packet loss, timing drift, flow indexing issues, clock synchronization, and performance bottlenecks.
· Aligning Endace visibility architecture with Zero Trust telemetry requirements and continuous verification workflows; Ensuring packet capture and telemetry support identity-aware network segmentation and policy enforcement.
Qualifications of the Endace Engineer:
· 3- 5+ years of experience in cybersecurity engineering, network security, or SOC tooling.
· Must have an Active TS/SCI clearance; willingness to take a polygraph exam.
· Strong understanding of packet analysis, network forensics, deep packet inspection, and PCAP workflows.
· Proficiency in Linux administration and scripting (Python, Bash, PowerShell).
Experience supporting regulated or high-security environments (DoD, IC, FedRAMP, PCI, HIPAA).
· Familiarity with Zero Trust Architecture, segmentation principles, and identity-centric policy models.
· Demonstrated experience integrating Endace with SIEMs, SOAR tools, and investigation platforms.
· Solid understanding of core network protocols (TCP/IP, TLS, DNS, HTTP/S, NetFlow/IPFIX, etc.)
· (IAT) Level II Certification, including Security+ CE, CCNA-Security, GSEC, SSCP, CySA+, GICSP, or CND Certification
· Ability to obtain a DoD 8570.01-M Cybersecurity Service Provider - Infrastructure Support Certification, including CEH, CHFI, CFR, Cloud+, or CND certification within 30 days of start date.
Compensation of the Endace Engineer:
· Compensation: $130,000 - $150,000+ **based on years of experience**
· Full Benefits: Cigna Medical, Dental, Vision, 401k, PTO/Holiday, Sick leave as required by state law
· Long-term stable and reputable company
Keywords: Endace, cyber engineering, endace implementation, endace sustainment, architecture, deploy, integrate, endace packet capture, network, network platforms, lifecycle for endace systems, SIEM, SOAR, Zero Trust, NDR, EDR, PCAP, Ansible, Terraform, scripting, SOC, threat hunters, telemetry, python, Bash, powershell, DoD, Fedramp, Zero Trust Architecture, TCP/IP, DNS, TS/SCI, TSSCI, Top Secret, SCI, CI Poly, CI Polygraph, McLean, Tysons, DC, Washington DC, Maryland, Virginia
This job opens for applications 12/16/2025. Applications for this job will be accepted for at least 30 days from the posting date
#LI-GP2
#LI-Onsite
Clearance : Top Secret/SCI clearance with CI poly
Location: McLean, VA
Schedule: Fully on site
Responsibilities of the Endace Engineer:
· Lead the design, deployment, and configuration of Endace appliances for enterprise-scale packet capture.
· Developing packet capture strategies aligned to network architecture, mission requirements, and Zero Trust visibility controls.
· Building high-availability, scalable, and resilient Endace clusters across data centers and cloud-connected environments.
· Integrating Endace with analytics ecosystems (SIEM, SOAR, NDR, EDR, threat intel, investigation platforms).
· Troubleshooting packet loss, timing drift, flow indexing issues, clock synchronization, and performance bottlenecks.
· Aligning Endace visibility architecture with Zero Trust telemetry requirements and continuous verification workflows; Ensuring packet capture and telemetry support identity-aware network segmentation and policy enforcement.
Qualifications of the Endace Engineer:
· 3- 5+ years of experience in cybersecurity engineering, network security, or SOC tooling.
· Must have an Active TS/SCI clearance; willingness to take a polygraph exam.
· Strong understanding of packet analysis, network forensics, deep packet inspection, and PCAP workflows.
· Proficiency in Linux administration and scripting (Python, Bash, PowerShell).
Experience supporting regulated or high-security environments (DoD, IC, FedRAMP, PCI, HIPAA).
· Familiarity with Zero Trust Architecture, segmentation principles, and identity-centric policy models.
· Demonstrated experience integrating Endace with SIEMs, SOAR tools, and investigation platforms.
· Solid understanding of core network protocols (TCP/IP, TLS, DNS, HTTP/S, NetFlow/IPFIX, etc.)
· (IAT) Level II Certification, including Security+ CE, CCNA-Security, GSEC, SSCP, CySA+, GICSP, or CND Certification
· Ability to obtain a DoD 8570.01-M Cybersecurity Service Provider - Infrastructure Support Certification, including CEH, CHFI, CFR, Cloud+, or CND certification within 30 days of start date.
Compensation of the Endace Engineer:
· Compensation: $130,000 - $150,000+ **based on years of experience**
· Full Benefits: Cigna Medical, Dental, Vision, 401k, PTO/Holiday, Sick leave as required by state law
· Long-term stable and reputable company
Keywords: Endace, cyber engineering, endace implementation, endace sustainment, architecture, deploy, integrate, endace packet capture, network, network platforms, lifecycle for endace systems, SIEM, SOAR, Zero Trust, NDR, EDR, PCAP, Ansible, Terraform, scripting, SOC, threat hunters, telemetry, python, Bash, powershell, DoD, Fedramp, Zero Trust Architecture, TCP/IP, DNS, TS/SCI, TSSCI, Top Secret, SCI, CI Poly, CI Polygraph, McLean, Tysons, DC, Washington DC, Maryland, Virginia
This job opens for applications 12/16/2025. Applications for this job will be accepted for at least 30 days from the posting date
#LI-GP2
#LI-Onsite
group id: 10430981
