BAE Systems USA
HBSS/ESS Cyber Engineer (Trellix ePO)
BAE Systems USA, Norfolk, Virginia, United States, 23500
Job Description
BAE Systems is seeking a highly skilled DISA Endpoint Security Solution (ESS) support professional to serve as a subject matter expert (SME) in Trellix ePolicy Orchestrator (ePO) and related technologies. The successful candidate will be responsible for administering ESS operations for enterprise computing systems, assisting with integration and deployment, and providing technical expertise to CNIC and their customers.
Key Responsibilities: Technical Expertise:
Serve as a SME in Trellix (McAfee) ePO server, Host Intrusion Prevention System (HIPS), VirusScan Enterprise (VSE), Endpoint Security (ENS), Trellix Application/Change Control, Rogue System Detection (RSD), USAF Asset Compliance Configuration Module (ACCM), and ePO dependencies such as Microsoft (MS) Structured Query Language (SQL) ESS (HBSS) Administration:
Administer the ESS operations for Enterprise computing systems, including deployment, tuning, and configuration of ESS modules and policies. Integration and Deployment:
Assist in integrating ESS with Information Systems (ISs) of CNIC, Navy regions, and tenant organizations. Customer Support:
Assist CNIC and their customers with deployment, tuning, and configuration of HBSS modules and policies. Maintenance and Validation:
Validate and coordinate all ESS scheduled maintenance. Firewall Policy Creation:
Create custom Firewall policies and work with Information Systems Security Manager (ISSM) and Information System Security Officers (ISSOs) to identify, configure, and apply HIPS signatures to protect against zero-day threats. Troubleshooting:
Troubleshoot VM and SQL issues that conflict with the basic functionality of ePO. Reporting and Querying:
Create ePO queries and reports to collect various deployment statistics as required. Scripting and Automation:
Experience with scripting and automation of ESS ePO and Agent capabilities such as PowerShell and ESS ePO Endpoint Deployment Kit. Compliance and Status Monitoring:
Evaluate and coordinate customer compliance with U.S. Cyber Command (USCYBEROM) orders and directives. Security Inspections and Initiatives:
Assist in preparation for security inspections and support other DoD initiatives related to ESS. Incident Response:
Coordinate with the ISSM and ISSOs regarding malicious events detected via ESS and update incident reports as needed with supplementary ESS data. Required Education, Experience, & Skills
Bachelor's degree in Information Technology, Information Assurance, Cybersecurity or related field and at least 5 years of experience in ESS/HBSS support or a related field (4 additional years of experience may be substituted for the degree)
Knowledge of: + Trellix (McAfee) ePO + Host Intrusion Prevention System (HIPS) + VirusScan Enterprise (VSE) + Endpoint Security (ENS) + McAfee Application/Change Control + Rogue System Detection (RSD) + USAF Asset Compliance Configuration Module (ACCM) + Microsoft (MS) Structured Query Language (SQL) Server + PowerShell and McAfee ePO Endpoint Deployment Kit
Certifications:
Trellix ESS (McAfee HBSS) Administrator certification Compliant with DoD Cyber Workforce Framework (DCWF), DoD Directive 8140.01 This may include CompTIA Security+, GIAC Security Essentials (GSEC), or ISC2 Systems Security Certificate Practitioner (SSCP), etc. Preferred Education, Experience, & Skills
Master's degree in Information Technology, Information Assurance, Cybersecurity or related field and at least 8 years of related experience
Certifications: Senior cybersecurity certifications such as ISC2 Certified Information Systems Security Professional (CISSP), ISC2 CISSP-Architecture, ISACA Certified Information Security Manager (CISM), ISC2 Certified Authorization Professional (CAP), EC-Council Certified Chief Information Security Officer (C|CISO), ISACA Certification in Risk and Information Systems Control (CRISC), ISACA Certified Information Systems Auditor (CISA).
Pay Information Full-Time Salary Range: $105254 - $178931
Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.
Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20+ hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics. About BAE Systems Intelligence & Security
BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it’s what we do at BAE Systems. Working here means using your passion and ingenuity where it counts – defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team—making a big impact on a global scale. At BAE Systems, you’ll find a rewarding career that truly makes a difference.
Intelligence & Security (I&S), based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do—from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels.
This position will be posted for at least 5 calendar days. The posting will remain active until the position is filled, or a qualified pool of candidates is identified.
BAE Systems is seeking a highly skilled DISA Endpoint Security Solution (ESS) support professional to serve as a subject matter expert (SME) in Trellix ePolicy Orchestrator (ePO) and related technologies. The successful candidate will be responsible for administering ESS operations for enterprise computing systems, assisting with integration and deployment, and providing technical expertise to CNIC and their customers.
Key Responsibilities: Technical Expertise:
Serve as a SME in Trellix (McAfee) ePO server, Host Intrusion Prevention System (HIPS), VirusScan Enterprise (VSE), Endpoint Security (ENS), Trellix Application/Change Control, Rogue System Detection (RSD), USAF Asset Compliance Configuration Module (ACCM), and ePO dependencies such as Microsoft (MS) Structured Query Language (SQL) ESS (HBSS) Administration:
Administer the ESS operations for Enterprise computing systems, including deployment, tuning, and configuration of ESS modules and policies. Integration and Deployment:
Assist in integrating ESS with Information Systems (ISs) of CNIC, Navy regions, and tenant organizations. Customer Support:
Assist CNIC and their customers with deployment, tuning, and configuration of HBSS modules and policies. Maintenance and Validation:
Validate and coordinate all ESS scheduled maintenance. Firewall Policy Creation:
Create custom Firewall policies and work with Information Systems Security Manager (ISSM) and Information System Security Officers (ISSOs) to identify, configure, and apply HIPS signatures to protect against zero-day threats. Troubleshooting:
Troubleshoot VM and SQL issues that conflict with the basic functionality of ePO. Reporting and Querying:
Create ePO queries and reports to collect various deployment statistics as required. Scripting and Automation:
Experience with scripting and automation of ESS ePO and Agent capabilities such as PowerShell and ESS ePO Endpoint Deployment Kit. Compliance and Status Monitoring:
Evaluate and coordinate customer compliance with U.S. Cyber Command (USCYBEROM) orders and directives. Security Inspections and Initiatives:
Assist in preparation for security inspections and support other DoD initiatives related to ESS. Incident Response:
Coordinate with the ISSM and ISSOs regarding malicious events detected via ESS and update incident reports as needed with supplementary ESS data. Required Education, Experience, & Skills
Bachelor's degree in Information Technology, Information Assurance, Cybersecurity or related field and at least 5 years of experience in ESS/HBSS support or a related field (4 additional years of experience may be substituted for the degree)
Knowledge of: + Trellix (McAfee) ePO + Host Intrusion Prevention System (HIPS) + VirusScan Enterprise (VSE) + Endpoint Security (ENS) + McAfee Application/Change Control + Rogue System Detection (RSD) + USAF Asset Compliance Configuration Module (ACCM) + Microsoft (MS) Structured Query Language (SQL) Server + PowerShell and McAfee ePO Endpoint Deployment Kit
Certifications:
Trellix ESS (McAfee HBSS) Administrator certification Compliant with DoD Cyber Workforce Framework (DCWF), DoD Directive 8140.01 This may include CompTIA Security+, GIAC Security Essentials (GSEC), or ISC2 Systems Security Certificate Practitioner (SSCP), etc. Preferred Education, Experience, & Skills
Master's degree in Information Technology, Information Assurance, Cybersecurity or related field and at least 8 years of related experience
Certifications: Senior cybersecurity certifications such as ISC2 Certified Information Systems Security Professional (CISSP), ISC2 CISSP-Architecture, ISACA Certified Information Security Manager (CISM), ISC2 Certified Authorization Professional (CAP), EC-Council Certified Chief Information Security Officer (C|CISO), ISACA Certification in Risk and Information Systems Control (CRISC), ISACA Certified Information Systems Auditor (CISA).
Pay Information Full-Time Salary Range: $105254 - $178931
Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.
Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20+ hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics. About BAE Systems Intelligence & Security
BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it’s what we do at BAE Systems. Working here means using your passion and ingenuity where it counts – defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team—making a big impact on a global scale. At BAE Systems, you’ll find a rewarding career that truly makes a difference.
Intelligence & Security (I&S), based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do—from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels.
This position will be posted for at least 5 calendar days. The posting will remain active until the position is filled, or a qualified pool of candidates is identified.