Endpoint Security Engineer

arlington, Virginia

Our client is seeking an Endpoint Security Engineer for a long term consulting position in Arlington, VA.

The Security Engineer is responsible for helping to define, drive, and deliver major components of endpoint security strategy. You will be required to interact with multiple technology teams across the organization to research, engineer, test, implement, communicate, and maintain solutions supporting the organization’s information security posture. You will be responsible for operations tasks such as patching, release deployments, and troubleshooting; and you will be expected to develop automated tools to help maintain the production environment, and complete administrative tasks.

Responsibilities

  • Provide endpoint protection leveraging industry leading application control products and tools to lock down critical systems and servers from unwanted changes, malware, and malicious file behavior allowing only trusted and approved software to execute
  • Develop and implement host security strategies, and prepare technical host configuration standards
  • Research and lead the adoption of new technologies
  • Architect and deploy endpoint security products that will support security requirements for the enterprise and its customers, business partners and vendors
  • Automate system administration tasks, and ensure solutions are implemented in a manner that enable DevSecOps workflows
  • Monitor performance of production systems, develop and recommend plans for performance improvement, and collaborate with infrastructure teams on implementation
  • Provide escalated support for complex technical issues regarding host configuration, security control/agent performance, and product integrations
  • Work with team to develop repeatable testing plans and ensure documentation of testing activities
  • Prepare presentations of both technical and non-technical scope
  • Attend Change Management meetings to represent operational changes and implementation plans

Qualifications

Required

  • 5+ years of experience with systems engineering or system administration across both Windows and Linux platforms
  • Experience with network-based endpoint security controls, such as web proxies and email security gateways
  • Experience with host-based endpoint security controls including application whitelisting, data loss prevention (DLP), anti-malware, endpoint detection and response (EDR), and full-disk encryption
  • Experience with Windows and Linux system hardening utilizing controls such as App Locker, Windows Defender Application Control, and SELinux
  • Proficient in scripting languages such as PowerShell, Python or Perl and comfortable fully automating administrative tasks
  • Strong understanding of Bash and the Linux command shell
  • Experience with infrastructure tools such as Ansible, Ivanti LANDesk, Microsoft Group Policy, Chef and Puppet
  • Excellent customer service & communication skills
  • Proficient in writing procedures/instruction/standards
  • Possess at least one foundational security certification: Security + or GSEC
  • Possess one or more of the following specialty certifications: GCWN, GCUX, MCSE: Core Infrastructure, MCSE: Mobility, RHCE, LPIC-2, LPIC-3

Preferred

  • Familiarity with the MITRE ATT&CK framework and the tactics, techniques, and procedures (TTPs) used by threat actors against endpoints
  • Experience with Docker containers, Kubernetes, and management of enterprise grade deployments of containerized applications
  • Experience with Cloud Security (AWS, GCS, Azure)

Job keywords:

Address
Files must be less than 2 MB.
Allowed file types: doc docx pdf.

Vertical Tabs