Master Endpoint Protection Administrator - Key Personnel

Job Title: Master Endpoint Protection Administrator

Location: Montgomery, AL

Clearance Level: Active Secret Clearance

Job Type: Full-Time

Must be U.S. Citizen

Education: Bachelor's degree or equivalent work experience

• Seven + years of relevant/recent experience with endpoint tools and cybersecurity
• Five + years of relevant/recent experience with Microsoft Office products
• Experience with MDE, MDE for servers, Trellix, Trellix ePolicy Orchestrator (ePO) servers, CMRS, Axonius
• Experience with host‑based AWS/Azure security solutions, such as:
• Microsoft Entra s Management
• Azure Active Directory (AAD)
• Azure Key Vault
• Microsoft Purview
• Network security groups
• Azure DDoS Protection
• Azure Policy
• Microsoft Defender for Cloud
• Azure Sentinel

• Current 8570/8140 requirement certification with network environment focus and ESS certifications

• Active Secret Clearance

Operate, manage, and deploy approved endpoint security tools and components to include ESS and Microsoft Defender/Microsoft Defender for Server (MDE/MDfS) in accordance with all active DoD and DISA policies and procedures in isolated environments, SIPRNET, and NIPRNet. Monitor, maintain, and facilitate endpoint protection compliance throughout DISA and the life cycle.

Perform rogue system and removable storage monitoring and registration, testing, module installation, policy, tag, and security scan creation and application, firewall, Intrusion Protection System, Antivirus tuning and enforcement.

Validate, register, update and maintain approved mass storage device documentation to include removable spinning disk drives.

Participate in and adhere to change control board and stakeholder weekly meetings, determinations, and requirements.

Investigate, remediate, prevent, and document issues resulting in denials of service.

Create, maintain, and facilitate custom queries, reports, and dashboards for system, module, and policy compliance.

Monitor and report cyber and insider threats.

• Facilitate and approve endpoint protection application upgrades and changes.

Coordinate Tier III vendor support troubleshooting.

Monitor, evaluate, remediate, and prevent performance impacting issues.

Manage DISA approved endpoint security tool accounts and credentials in accordance with DISA privileged access policies and procedures.

Conduct audits and provide documentation.

• Compliance reports and trending analysis
• Current registered device documentation
• Security Violation Reports
• Weekly Metrics
• Additional deliverables that apply to all tasks listed in this section

• Competitive salary
• 401(k)
• Health care
• Paid time off
• No‑limit student loan forgiveness (merit‑based)
• Security clearance sponsorship for new/qualified employees
• Casual dress code
• Free parking
• Corporate discounts
• Gym memberships