Job Requirements
Annapolis, MD
Top Secret/SCI Full Scope Polygraph
Career Level not specified
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
Job Description
Deploy, configure, test, manage, and optimize endpoint detection and response solutions across the NSA enterprise. Establish comprehensive Standard Operating Procedures (SOPs) for EDR functionalities and lead training sessions to empower SOC analysts in maximizing platform efficiency and threat visibility.
Essential Duties and Responsibilities:
Responsible to the deployment, testing, management, and optimization of endpoint detection and response solutions. This role involves deploying, configuring, testing, and monitoring EDR capabilities to traditional on premises and cloud environments. The ideal candidate should have a strong background in endpoint security, cloud applications, Windows forensics, large enterprise endpoint deployments, and SOC analyst support.
Required Skills
- EDR Solutions: Proficient in one or more EDR platforms (Trellix HX/EDRF or Microsoft Defender for Endpoint EDR, preferably both).
- Cloud Applications: Experience with cloud security and familiarity with cloud service providers (AWS or Azure, preferably both).
- Cloud Security: Experience securing cloud-hosted workloads using EDR solutions and understanding cloud-native security controls and logging (Microsoft Sentinel, Microsoft Defender, Microsoft Purview, AWS CoudWatch, AWS CloudTrail, AWS GuardDuty, or AWS Security Hub). CCSP Certified Cloud Security Professional certification or equivalent.
- Security Operations Center (SOC) Support: Experience supporting SOC functions such as assisting in monitoring, training analysts, documenting SOPs, incident response coordination, analysis of security events, and process/procedure improvement. Microsoft Certified: Security Operations Analyst Associate (SOAA) or equivalent.
- Network Security: Understanding of network protocols, traffic analysis, and intrusion detection systems (CompTIA Security+ is required).
- Windows Forensics: In-depth knowledge of Windows operation system internals, registry, and file system. Familiarity with forensic tools like EnCase, FTK, or open-source alternatives. SANS Windows Forensic Analysis (FOR500) or equivalent.
Desired Skills
- Threat Hunting: Proactive identification and investigation of potential security threats and anomalies.
- Incident Response: Experience in managing and responding to security incidents, including containment, eradication, and recovery.
- Security Information and Event Management (SIEM): Familiarity with SIEM systems for log analysis and correlation (e.g. Splunk, Elastic, Microsoft Sentinel).
- Scripting and Automation: Proficient in scripting languages (e.g., PowerShell, Python) for automating tasks and workflows.
- Certified Information Systems Security Professional (CISSP)
- Microsoft 365 Certified: Endpoint Administrator Associate (MD-102)
Additional Details
This Position requires a TS/SCI clearance with an NSA FS Poly.
Company Overview:
Vetegrity is an employee-focused small business, founded in 2008. We are passionate about supporting the missions of the Intelligence Community and the Department of Defense. As a Service-Disabled, Veteran-Owned Small Business, we pride ourselves on our commitment to excellence and integrity in everything we do.
We offer competitive compensation and benefits to include:
- Medical/Dental/Vision
- 20 Days of Paid Time Off (PTO) + Federal Holidays
- 401k with Employer Match
- Profit Sharing
- Tuition Reimbursement
- Flex Spending Account
- Life Insurance, Long & Short-Term Disability
- Pet Adoption Reimbursement
- Annual Physical Fitness/Wellness Allowance
- Supplemental Insurance
- Employee Referral Program
- Performance Incentives
- On-The-Spot Rewards
- Other company-sponsored perks include after-hours events, logo apparel, holiday parties, and more!
Vetegrity provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.
Deploy, configure, test, manage, and optimize endpoint detection and response solutions across the NSA enterprise. Establish comprehensive Standard Operating Procedures (SOPs) for EDR functionalities and lead training sessions to empower SOC analysts in maximizing platform efficiency and threat visibility.
Essential Duties and Responsibilities:
Responsible to the deployment, testing, management, and optimization of endpoint detection and response solutions. This role involves deploying, configuring, testing, and monitoring EDR capabilities to traditional on premises and cloud environments. The ideal candidate should have a strong background in endpoint security, cloud applications, Windows forensics, large enterprise endpoint deployments, and SOC analyst support.
Required Skills
- EDR Solutions: Proficient in one or more EDR platforms (Trellix HX/EDRF or Microsoft Defender for Endpoint EDR, preferably both).
- Cloud Applications: Experience with cloud security and familiarity with cloud service providers (AWS or Azure, preferably both).
- Cloud Security: Experience securing cloud-hosted workloads using EDR solutions and understanding cloud-native security controls and logging (Microsoft Sentinel, Microsoft Defender, Microsoft Purview, AWS CoudWatch, AWS CloudTrail, AWS GuardDuty, or AWS Security Hub). CCSP Certified Cloud Security Professional certification or equivalent.
- Security Operations Center (SOC) Support: Experience supporting SOC functions such as assisting in monitoring, training analysts, documenting SOPs, incident response coordination, analysis of security events, and process/procedure improvement. Microsoft Certified: Security Operations Analyst Associate (SOAA) or equivalent.
- Network Security: Understanding of network protocols, traffic analysis, and intrusion detection systems (CompTIA Security+ is required).
- Windows Forensics: In-depth knowledge of Windows operation system internals, registry, and file system. Familiarity with forensic tools like EnCase, FTK, or open-source alternatives. SANS Windows Forensic Analysis (FOR500) or equivalent.
Desired Skills
- Threat Hunting: Proactive identification and investigation of potential security threats and anomalies.
- Incident Response: Experience in managing and responding to security incidents, including containment, eradication, and recovery.
- Security Information and Event Management (SIEM): Familiarity with SIEM systems for log analysis and correlation (e.g. Splunk, Elastic, Microsoft Sentinel).
- Scripting and Automation: Proficient in scripting languages (e.g., PowerShell, Python) for automating tasks and workflows.
- Certified Information Systems Security Professional (CISSP)
- Microsoft 365 Certified: Endpoint Administrator Associate (MD-102)
Additional Details
This Position requires a TS/SCI clearance with an NSA FS Poly.
Company Overview:
Vetegrity is an employee-focused small business, founded in 2008. We are passionate about supporting the missions of the Intelligence Community and the Department of Defense. As a Service-Disabled, Veteran-Owned Small Business, we pride ourselves on our commitment to excellence and integrity in everything we do.
We offer competitive compensation and benefits to include:
- Medical/Dental/Vision
- 20 Days of Paid Time Off (PTO) + Federal Holidays
- 401k with Employer Match
- Profit Sharing
- Tuition Reimbursement
- Flex Spending Account
- Life Insurance, Long & Short-Term Disability
- Pet Adoption Reimbursement
- Annual Physical Fitness/Wellness Allowance
- Supplemental Insurance
- Employee Referral Program
- Performance Incentives
- On-The-Spot Rewards
- Other company-sponsored perks include after-hours events, logo apparel, holiday parties, and more!
Vetegrity provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.
group id: 90670089
