Leidos
Senior Trellix/Microsoft Defender Administrator
Leidos, Fort Belvoir, Virginia, United States, 22060
Overview
Leidos is seeking a skilled
Senior Trellix/Microsoft Defender Administrator in Fort Belvoir, VA
to join the I3TS team supporting DTRA. The I3TS program provides enterprise-wide IT support to enable DTRA's Information Management & Technology Directorate (ITD) to consolidate, modernize, and continuously innovate the delivery of IT services and mission capabilities to DTRA's internal and external mission partners operating in CONUS and OCONUS locations. The candidate will be responsible for ensuring the security and integrity of IT systems by operating Endpoint Security with experience in Trellix and Microsoft Defender. The administrator will apply Security Technical Implementation Guides (STIGs), manage system patches, and oversee vulnerability management processes. This role supports federal clients in maintaining compliance with the Department of Defense (DoD) and other federal cybersecurity standards. The candidate will identify points of vulnerability and non-compliance with established Information Assurance (IA) guidelines and regulations, recommend mitigation strategies, and assist users as needed in a classified computing environment. The selected candidate must be able to work independently as well as with a team of IT analysts, administrators, and engineers. The position requires excellent communications skills, both verbal and written, and the ability to work in a high-energy environment with shifting priorities. Must possess an active DoD TS/SCI Clearance at time of consideration Key Responsibilities
Continuous upkeep, monitoring, analysis, and response to Information System, network, and security events using Endpoint Security tools such as Trellix and Microsoft Defender.
STIG Application and Compliance
Implement and maintain Security Technical Implementation Guides (STIGs) on Endpoint Security Tools. Conduct regular STIG compliance checks using tools like SCAP Compliance Checker and STIG Viewer. Document STIG configurations and remediation actions to ensure audit readiness.
Patching and System Updates
Manage and deploy operating system and application patches in accordance with federal patch management policies. Coordinate patch schedules to minimize operational impact while meeting compliance deadlines. Verify patch deployment success and troubleshoot any issues arising from updates.
System Hardening
Harden systems by applying best practices and federal security guidelines to reduce attack surfaces. Maintain configuration baselines and ensure systems adhere to DoD and NIST standards.
Incident Response Support
Participate in internal/external security audits/inspections; perform risk assessments and Continuous Monitoring. Assist in identifying and responding to security incidents related to vulnerabilities or misconfigurations. Document incidents and contribute to after-action reports for continuous improvement.
Collaboration and Reporting
Work closely with system administrators, engineering staff, and compliance teams to ensure cohesive security operations. Prepare detailed reports and briefings for federal clients on STIG compliance, patching status, and vulnerability management efforts. Develop, implement and enforce Information Security Policies and Procedures.
Tool Utilization
Trellix and Microsoft Defender
Basic Qualifications
BS bachelor's degree with 8-12 years' experience or 6-10 years of IA experience without a degree. Specific experience, education and training may be considered in lieu of degree. A current DoD 8570 baseline certification Understanding of the Risk Management Framework (RMF), NIST, ICD, and CNSS standards. Familiarity with network technologies (LAN & WAN) and best practices within a classified environment to include crypto and key management. STIG compliance, SCC and STIG Viewer experience, and ACAS expertise. Expert with Microsoft Windows, Linux, and system virtualization in a secure network environment. Ability to work in a constantly changing regulatory environment with short-, mid-, and long-term timelines for remediating non-compliance. Ability to work well within a team and adapt quickly to change. Strong writing and verbal presentation skills. Must possess an active DoD TS/SCI Clearance at time of consideration.
Preferred Qualifications
Security+ or CISSP or equivalent DoD IS knowledge and experience Security hardening scripting/automation experience Ansible and/or MECM experience Microsoft OS Certification (MCSE Win 7 or other) Linux certification (RHCSA, CompTIA Linux, LCFS/LCFE, etc.) Please note: This specification reflects the role as posted and does not include any extraneous marketing language. #J-18808-Ljbffr
Leidos is seeking a skilled
Senior Trellix/Microsoft Defender Administrator in Fort Belvoir, VA
to join the I3TS team supporting DTRA. The I3TS program provides enterprise-wide IT support to enable DTRA's Information Management & Technology Directorate (ITD) to consolidate, modernize, and continuously innovate the delivery of IT services and mission capabilities to DTRA's internal and external mission partners operating in CONUS and OCONUS locations. The candidate will be responsible for ensuring the security and integrity of IT systems by operating Endpoint Security with experience in Trellix and Microsoft Defender. The administrator will apply Security Technical Implementation Guides (STIGs), manage system patches, and oversee vulnerability management processes. This role supports federal clients in maintaining compliance with the Department of Defense (DoD) and other federal cybersecurity standards. The candidate will identify points of vulnerability and non-compliance with established Information Assurance (IA) guidelines and regulations, recommend mitigation strategies, and assist users as needed in a classified computing environment. The selected candidate must be able to work independently as well as with a team of IT analysts, administrators, and engineers. The position requires excellent communications skills, both verbal and written, and the ability to work in a high-energy environment with shifting priorities. Must possess an active DoD TS/SCI Clearance at time of consideration Key Responsibilities
Continuous upkeep, monitoring, analysis, and response to Information System, network, and security events using Endpoint Security tools such as Trellix and Microsoft Defender.
STIG Application and Compliance
Implement and maintain Security Technical Implementation Guides (STIGs) on Endpoint Security Tools. Conduct regular STIG compliance checks using tools like SCAP Compliance Checker and STIG Viewer. Document STIG configurations and remediation actions to ensure audit readiness.
Patching and System Updates
Manage and deploy operating system and application patches in accordance with federal patch management policies. Coordinate patch schedules to minimize operational impact while meeting compliance deadlines. Verify patch deployment success and troubleshoot any issues arising from updates.
System Hardening
Harden systems by applying best practices and federal security guidelines to reduce attack surfaces. Maintain configuration baselines and ensure systems adhere to DoD and NIST standards.
Incident Response Support
Participate in internal/external security audits/inspections; perform risk assessments and Continuous Monitoring. Assist in identifying and responding to security incidents related to vulnerabilities or misconfigurations. Document incidents and contribute to after-action reports for continuous improvement.
Collaboration and Reporting
Work closely with system administrators, engineering staff, and compliance teams to ensure cohesive security operations. Prepare detailed reports and briefings for federal clients on STIG compliance, patching status, and vulnerability management efforts. Develop, implement and enforce Information Security Policies and Procedures.
Tool Utilization
Trellix and Microsoft Defender
Basic Qualifications
BS bachelor's degree with 8-12 years' experience or 6-10 years of IA experience without a degree. Specific experience, education and training may be considered in lieu of degree. A current DoD 8570 baseline certification Understanding of the Risk Management Framework (RMF), NIST, ICD, and CNSS standards. Familiarity with network technologies (LAN & WAN) and best practices within a classified environment to include crypto and key management. STIG compliance, SCC and STIG Viewer experience, and ACAS expertise. Expert with Microsoft Windows, Linux, and system virtualization in a secure network environment. Ability to work in a constantly changing regulatory environment with short-, mid-, and long-term timelines for remediating non-compliance. Ability to work well within a team and adapt quickly to change. Strong writing and verbal presentation skills. Must possess an active DoD TS/SCI Clearance at time of consideration.
Preferred Qualifications
Security+ or CISSP or equivalent DoD IS knowledge and experience Security hardening scripting/automation experience Ansible and/or MECM experience Microsoft OS Certification (MCSE Win 7 or other) Linux certification (RHCSA, CompTIA Linux, LCFS/LCFE, etc.) Please note: This specification reflects the role as posted and does not include any extraneous marketing language. #J-18808-Ljbffr