PD Inc
Cyber Enginer- Microsoft Defender for Endpoint (DfE) Engineer
PD Inc, Washington, District of Columbia, us, 20022
Job Description:
Microsoft Defender for Endpoint (DfE) Engineer
Overview:
PD INC International, as a key support contractor to the Government Publishing Office (GPO), is providing enterprise-wide cybersecurity engineering and architecture support initiative. The core objective of this engagement is to design, implement, and oversee the execution of a comprehensive Zero Trust Architecture (ZTA) framework aligned with NIST SP 800-207 and Executive Order 14028. This includes establishing governance, security engineering, and risk mitigation strategies that advance the cybersecurity maturity posture of GPO's information systems and enterprise security operations. As part of this mission, we are seeking a Microsoft Defender for Endpoint (DfE) Engineer to support the deployment and maintenance of GPO’s endpoint security infrastructure. This role is essential to securing endpoints across the GPO environment by delivering scalable deployment strategies, toolset integrations, and alignment to Microsoft’s Zero Trust vision and GPO’s cybersecurity framework.
The DfE Engineer will augment the GPO IT Security Division during Shift 1 operating hours (0600 – 1730, Monday through Friday), providing 40 hours per week of support to plan, engineer, and implement endpoint security solutions across GPO’s IT enterprise. The position requires the ability to operate within a high-availability cybersecurity environment and to continue supporting operations during Continuity of Operations (COOP) scenarios, unforeseen emergencies, and scheduled exercises, including at alternate locations. All tasks will be performed under formal task orders issued by the GPO.
Support Scope: The primary objective of this role is to support GPO’s endpoint protection initiatives by leading the implementation, configuration, and optimization of Microsoft Defender for Endpoint (MDE). The contractor shall perform DfE support activities defined in the GPO SOW, including the preparation of Task Order Management Plans, cost analyses, activity and project tracking schedules, risk registers, and mitigation strategies supporting all GPO Security Operations Center (SOC) activities. The role includes both technical execution and strategic input to ensure endpoint security posture aligns with federal cybersecurity standards and GPO’s Zero Trust roadmap.
Key Responsibilities: Deployment and Integration:
Identify target endpoint devices, OS versions, and optimal deployment methods (Microsoft Intune or Active Directory Group Policy Objects) Deploy Defender for Endpoint agents across a minimum threshold of Microsoft-supported endpoints Create DfE support infrastructure components (e.g., storage accounts, permissions, automated workflows) to enable large-scale deployment Develop custom DfE deployment scripts, including those for uninstalling legacy antivirus/EDR platforms Test deployment scripts for functionality, coverage, and rollback capabilities Oversee agent deployment execution to meet or exceed scoped device percentage thresholds Validate onboarding of all deployed agents and ensure endpoint reporting and telemetry are operational Configuration and Compliance:
Ensure deployed endpoints are configured in alignment with Microsoft’s and federal best practices Collaborate with SIEM/SOC engineers to validate Defender telemetry is accessible in Microsoft Sentinel Support creation of Standard Operating Procedures and documentation for ongoing endpoint security monitoring Governance and Program Management Support:
Assist in the preparation of activity tracking schedules, performance metrics, and risk/issue logs for endpoint security deployment Contribute to the overall Task Order Management Plan related to endpoint defense Participate in risk management activities and incident response support if endpoint integrity is compromised Minimum Qualifications:
Education and Certifications: Bachelor’s degree in Information Systems, Cybersecurity, or a related technical discipline. Microsoft Defender or Azure Security certification preferred. Skills and Competencies: Strong experience in endpoint protection deployment, scripting (PowerShell, Intune, GPO), and EDR tuning. Familiarity with GCC or GCC-High tenant environments. Experience: At least three (3) years of experience deploying or supporting Microsoft Defender for Endpoint in enterprise or federal environments. Experience removing legacy security software and enabling native Windows Defender solutions is preferred. Security Clearance: Active U.S. security clearance required at time of application. Preferred Certifications:
CISSP, CCSP, Azure Security Engineer Associate, or equivalent Zero Trust Strategist (ZTX, CISA ZT Certified)
Work Environment: This role operates within a hybrid/remote-eligible support model. Candidates must be available during GPO contractor support hours for mission-essential cybersecurity response and coordination. Monthly in-person attendance is required for the GPO IT Security Division’s All Hands meeting on the third Tuesday of each month. During COOP, the contractor may be required to support operations from an alternate government site or telework location.
Equal Opportunity Employer: PD INC is an Equal Opportunity Employer and welcomes applicants from all backgrounds, including veterans and individuals with disabilities. We are committed to diversity, equity, and inclusion in every aspect of our workforce.
#J-18808-Ljbffr
Microsoft Defender for Endpoint (DfE) Engineer
Overview:
PD INC International, as a key support contractor to the Government Publishing Office (GPO), is providing enterprise-wide cybersecurity engineering and architecture support initiative. The core objective of this engagement is to design, implement, and oversee the execution of a comprehensive Zero Trust Architecture (ZTA) framework aligned with NIST SP 800-207 and Executive Order 14028. This includes establishing governance, security engineering, and risk mitigation strategies that advance the cybersecurity maturity posture of GPO's information systems and enterprise security operations. As part of this mission, we are seeking a Microsoft Defender for Endpoint (DfE) Engineer to support the deployment and maintenance of GPO’s endpoint security infrastructure. This role is essential to securing endpoints across the GPO environment by delivering scalable deployment strategies, toolset integrations, and alignment to Microsoft’s Zero Trust vision and GPO’s cybersecurity framework.
The DfE Engineer will augment the GPO IT Security Division during Shift 1 operating hours (0600 – 1730, Monday through Friday), providing 40 hours per week of support to plan, engineer, and implement endpoint security solutions across GPO’s IT enterprise. The position requires the ability to operate within a high-availability cybersecurity environment and to continue supporting operations during Continuity of Operations (COOP) scenarios, unforeseen emergencies, and scheduled exercises, including at alternate locations. All tasks will be performed under formal task orders issued by the GPO.
Support Scope: The primary objective of this role is to support GPO’s endpoint protection initiatives by leading the implementation, configuration, and optimization of Microsoft Defender for Endpoint (MDE). The contractor shall perform DfE support activities defined in the GPO SOW, including the preparation of Task Order Management Plans, cost analyses, activity and project tracking schedules, risk registers, and mitigation strategies supporting all GPO Security Operations Center (SOC) activities. The role includes both technical execution and strategic input to ensure endpoint security posture aligns with federal cybersecurity standards and GPO’s Zero Trust roadmap.
Key Responsibilities: Deployment and Integration:
Identify target endpoint devices, OS versions, and optimal deployment methods (Microsoft Intune or Active Directory Group Policy Objects) Deploy Defender for Endpoint agents across a minimum threshold of Microsoft-supported endpoints Create DfE support infrastructure components (e.g., storage accounts, permissions, automated workflows) to enable large-scale deployment Develop custom DfE deployment scripts, including those for uninstalling legacy antivirus/EDR platforms Test deployment scripts for functionality, coverage, and rollback capabilities Oversee agent deployment execution to meet or exceed scoped device percentage thresholds Validate onboarding of all deployed agents and ensure endpoint reporting and telemetry are operational Configuration and Compliance:
Ensure deployed endpoints are configured in alignment with Microsoft’s and federal best practices Collaborate with SIEM/SOC engineers to validate Defender telemetry is accessible in Microsoft Sentinel Support creation of Standard Operating Procedures and documentation for ongoing endpoint security monitoring Governance and Program Management Support:
Assist in the preparation of activity tracking schedules, performance metrics, and risk/issue logs for endpoint security deployment Contribute to the overall Task Order Management Plan related to endpoint defense Participate in risk management activities and incident response support if endpoint integrity is compromised Minimum Qualifications:
Education and Certifications: Bachelor’s degree in Information Systems, Cybersecurity, or a related technical discipline. Microsoft Defender or Azure Security certification preferred. Skills and Competencies: Strong experience in endpoint protection deployment, scripting (PowerShell, Intune, GPO), and EDR tuning. Familiarity with GCC or GCC-High tenant environments. Experience: At least three (3) years of experience deploying or supporting Microsoft Defender for Endpoint in enterprise or federal environments. Experience removing legacy security software and enabling native Windows Defender solutions is preferred. Security Clearance: Active U.S. security clearance required at time of application. Preferred Certifications:
CISSP, CCSP, Azure Security Engineer Associate, or equivalent Zero Trust Strategist (ZTX, CISA ZT Certified)
Work Environment: This role operates within a hybrid/remote-eligible support model. Candidates must be available during GPO contractor support hours for mission-essential cybersecurity response and coordination. Monthly in-person attendance is required for the GPO IT Security Division’s All Hands meeting on the third Tuesday of each month. During COOP, the contractor may be required to support operations from an alternate government site or telework location.
Equal Opportunity Employer: PD INC is an Equal Opportunity Employer and welcomes applicants from all backgrounds, including veterans and individuals with disabilities. We are committed to diversity, equity, and inclusion in every aspect of our workforce.
#J-18808-Ljbffr