Cybersecurity (McAfee) Scanning Engineer (Secret Clearance Required)

CSRA Inc. Arlington, VA
Primary Location

Arlington , VA

United States

Job Requisition

RQ23397

Category

Information Technology

Apply

This position supports continuous network vulnerability and compliance scanning for the Department of State's Bureau of Diplomatic Security. The duties include, but are not limited to, conducting compliance and vulnerability scans on workstations, servers, databases, web servers and DMZ assets as well as reporting metrics, generating contract required deliverables, researching cyber security issues, and providing customer service. The Enterprise Scanning team is responsible for weekly vulnerability and compliance reporting on over 120,000 assets across 300 foreign posts and hundreds of domestic locations.

Daily Responsibilities:

* Responsible for implementing and maintaining McAfee ePolicy Orchestrator, HIPS and Policy Auditor.

* Installing McAfee ePO/Agent into clouds and other network enclaves

* Maintenance of the Agent/McAfee infrastructure/Database

* Working with the McAfee Vendor to resolve issues

* Upgrade of McAfee Epo to McAfee ENS

* Working with enterprise to resolve HIPS connectivity with other security tools (Symantec)

* Install, operate, monitor, and maintain host-based McAfee security products via McAfee ePolicy Orchestrator.

* Develop and execute upgrade plans for multiple security products (including ePolicy Orchestrator) on a regular basis.

* Create, tune, and implement custom IPS signatures based on indicators, intelligence, and collaboration with other groups.

* Routinely analyze and reconfigure product configurations in an effort to optimize and automate daily operations.

* Act as a point of escalation for all McAfee technical issues for 10+ colleagues.

* Document and maintain SCAP content that is leveraged by Policy Auditor for security compliance scanning.

* Monitor Remedy ticketing system and support security help desk

* Perform and post results of bi-weekly and on demand vulnerability assessments

* Provide incident reporting and response capability

* Ensure data flows are maintained between internal tools and enterprise-wide reporting dashboard

Required:

Interim Secret Clearance to start, ability to obtain TS with 3+ years experience in the following:

* Working knowledge of and experience in the federal information systems methodology, policy, and standards environment of information security, especially in government is desirable. Excellent written and oral communications skills desired. Ability to work collaboratively with a broad range of constituencies essential. A demonstrated ability to work with diverse groups of people is required. Experience with current tools (McAfee ePolicy Orchestrator, HIPS, Policy Auditor, and Rapid 7 Vulnerability Scanner is strongly desired.

* Experience performing vulnerability and/or compliance scanning in an enterprise network environment

* Technical knowledge of information technology and cyber security standards and issues is required for this position

* Center for Strategic and International Studies: Twenty Critical Controls for Effective Cyber Defense

* NIST Special Publication 800-53

* ITIL and ITSM methodology

* The IT Security Functional Requirements, outlined in the protection profile for databases by NIAP CCEVS (niap-ccevs.org)

* The CVE (Common Vulnerabilities and Exposures) standard

* Effective written and verbal communication skills

* Persistent and polite follow-up with clients in order to maintain project schedule

* Problem solving and attention to detail

Preferred:

Bachelor's Degree desired but not required, preferably in IS, IT or related discipline

Preferred but not required – CISSP, CEH, CompTIA Security+ and/or Network+

For more than 50 years, General Dynamics Information Technology has served as a trusted provider of information technology, systems engineering, training, and professional services to customers across federal, state, and local governments, and in the commercial sector. Over 40,000 GDIT professionals deliver enterprise solutions, manage mission-critical IT programs, and provide mission support services worldwide. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

Post date: July 12, 2018

Location - Thoroughfare (i.e. Street address):

Arlington , VA

United States

Location - Thoroughfare (i.e. Street address):

Cybersecurity (McAfee) Scanning Engineer (Secret Clearance Required)

CSRA

July 12, 2018

This position supports continuous network vulnerability and compliance scanning for the Department of State's Bureau of Diplomatic Security. The duties include, but are not limited to, conducting compliance and vulnerability scans on workstations, servers, databases, web servers and DMZ assets as well as reporting metrics, generating contract required deliverables, researching cyber security issues, and providing customer service. The Enterprise Scanning team is responsible for weekly vulnerability and compliance reporting on over 120,000 assets across 300 foreign posts and hundreds of domestic locations.

Daily Responsibilities:

* Responsible for implementing and maintaining McAfee ePolicy Orchestrator, HIPS and Policy Auditor.

* Installing McAfee ePO/Agent into clouds and other network enclaves

* Maintenance of the Agent/McAfee infrastructure/Database

* Working with the McAfee Vendor to resolve issues

* Upgrade of McAfee Epo to McAfee ENS

* Working with enterprise to resolve HIPS connectivity with other security tools (Symantec)

* Install, operate, monitor, and maintain host-based McAfee security products via McAfee ePolicy Orchestrator.

* Develop and execute upgrade plans for multiple security products (including ePolicy Orchestrator) on a regular basis.

* Create, tune, and implement custom IPS signatures based on indicators, intelligence, and collaboration with other groups.

* Routinely analyze and reconfigure product configurations in an effort to optimize and automate daily operations.

* Act as a point of escalation for all McAfee technical issues for 10+ colleagues.

* Document and maintain SCAP content that is leveraged by Policy Auditor for security compliance scanning.

* Monitor Remedy ticketing system and support security help desk

* Perform and post results of bi-weekly and on demand vulnerability assessments

* Provide incident reporting and response capability

* Ensure data flows are maintained between internal tools and enterprise-wide reporting dashboard

Required:

Interim Secret Clearance to start, ability to obtain TS with 3+ years experience in the following:

* Working knowledge of and experience in the federal information systems methodology, policy, and standards environment of information security, especially in government is desirable. Excellent written and oral communications skills desired. Ability to work collaboratively with a broad range of constituencies essential. A demonstrated ability to work with diverse groups of people is required. Experience with current tools (McAfee ePolicy Orchestrator, HIPS, Policy Auditor, and Rapid 7 Vulnerability Scanner is strongly desired.

* Experience performing vulnerability and/or compliance scanning in an enterprise network environment

* Technical knowledge of information technology and cyber security standards and issues is required for this position

* Center for Strategic and International Studies: Twenty Critical Controls for Effective Cyber Defense

* NIST Special Publication 800-53

* ITIL and ITSM methodology

* The IT Security Functional Requirements, outlined in the protection profile for databases by NIAP CCEVS (niap-ccevs.org)

* The CVE (Common Vulnerabilities and Exposures) standard

* Effective written and verbal communication skills

* Persistent and polite follow-up with clients in order to maintain project schedule

* Problem solving and attention to detail

Preferred:

Bachelor's Degree desired but not required, preferably in IS, IT or related discipline

Preferred but not required – CISSP, CEH, CompTIA Security+ and/or Network+

Arlington , VA

United States

*

Similar jobs you might like