Posted today
Top Secret
Unspecified
Unspecified
IT - Database
Tampa, FL (On-Site/Office)
Barbaricum is a rapidly growing government contractor providing leading-edge support to federal customers, with a particular focus on Defense and National Security mission sets. We leverage more than 17 years of support to stakeholders across the federal government, with established and growing capabilities across Intelligence, Analytics, Engineering, Mission Support, and Communications disciplines. Founded in 2008, our mission is to transform the way our customers approach constantly changing and complex problem sets by bringing to bear the latest in technology and the highest caliber of talent.
Headquartered in Washington, DC's historic Dupont Circle neighborhood, Barbaricum also has a corporate presence in Tampa, FL, Bedford, IN, and Dayton, OH, with team members across the United States and around the world. As a leader in our space, we partner with firms in the private sector, academic institutions, and industry associations with a goal of continually building our expertise and capabilities for the benefit of our employees and the customers we support. Through all of this, we have built a vibrant corporate culture diverse in expertise and perspectives with a focus on collaboration and innovation. Our teams are at the frontier of the Nation's most complex and rewarding challenges. Join our team.
We are seeking a Data Protection Engineer (Trellix) to support USSOCOM's Zero Trust execution efforts, with a focus on protecting sensitive data across SIPR and Top Secret networks.
The Role
The Data Protection Engineer serves as the technical authority for endpoint data protection within classified environments. This role is responsible for designing, deploying, and operating Trellix (formerly McAfee) Data Loss Prevention (DLP) capabilities to prevent unauthorized data exfiltration and insider threats in air-gapped and disconnected networks.
This is a senior, hands-on role supporting mission-critical systems operating at the tactical edge.
Responsibilities
Required Qualifications
Preferred Qualifications
EEO Commitment
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law.
Headquartered in Washington, DC's historic Dupont Circle neighborhood, Barbaricum also has a corporate presence in Tampa, FL, Bedford, IN, and Dayton, OH, with team members across the United States and around the world. As a leader in our space, we partner with firms in the private sector, academic institutions, and industry associations with a goal of continually building our expertise and capabilities for the benefit of our employees and the customers we support. Through all of this, we have built a vibrant corporate culture diverse in expertise and perspectives with a focus on collaboration and innovation. Our teams are at the frontier of the Nation's most complex and rewarding challenges. Join our team.
We are seeking a Data Protection Engineer (Trellix) to support USSOCOM's Zero Trust execution efforts, with a focus on protecting sensitive data across SIPR and Top Secret networks.
The Role
The Data Protection Engineer serves as the technical authority for endpoint data protection within classified environments. This role is responsible for designing, deploying, and operating Trellix (formerly McAfee) Data Loss Prevention (DLP) capabilities to prevent unauthorized data exfiltration and insider threats in air-gapped and disconnected networks.
This is a senior, hands-on role supporting mission-critical systems operating at the tactical edge.
Responsibilities
- Design, configure, and manage Trellix DLP Endpoint policies using ePolicy Orchestrator (ePO) on SIPR and Top Secret networks
- Enforce device control and data protection policies to prevent unauthorized data transfer via USB, web, print, and clipboard
- Develop and tune data classification rules and regex-based identifiers to detect USSOCOM-sensitive data
- Transition DLP policies from audit to enforcement while minimizing false positives
- Manage Trellix operations within air-gapped environments, including manual transfer of policies, agent updates, and signatures
- Integrate Trellix DLP with other security platforms (e.g., ICAP, web proxies, Kiteworks) to extend inspection coverage
- Serve as Tier 3 escalation for DLP incidents and support incident analysis and response
- Coordinate with SOC and SIEM teams to ensure DLP events are ingested and analyzed in Splunk
Required Qualifications
- Active DoD Top Secret clearance with SCI eligibility
- DoD 8570 / 8140 compliant (Security+ CE or higher - IAT Level II)
- Master's degree in Computer Science, Cybersecurity, Information Technology, or related field
- 10+ years of relevant cybersecurity or endpoint security experience
- 5+ years of hands-on experience administering Trellix (McAfee) ePolicy Orchestrator (ePO) and DLP Endpoint
- Strong understanding of device control policies for removable media, peripherals, and printing
- Proficiency creating custom data identifiers using Regular Expressions (Regex) and dictionaries
- Proven ability to troubleshoot complex agent-based issues on Windows endpoints
Preferred Qualifications
- Experience supporting air-gapped or isolated networks (e.g., SIPR, JWICS, SAP environments)
- Experience with Trellix Endpoint Security (ENS) and Threat Intelligence Exchange (TIE/DXL)
- Familiarity with data classification and secure transfer platforms (e.g., Kiteworks, Boldon James)
- Experience using Splunk for security log analysis and dashboarding
- Trellix Certified Specialist - Data Loss Prevention (DLP) or equivalent McAfee certification
EEO Commitment
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law.
group id: 10434447
