Senior Systems Engineer – Endpoint Security
$131,800–$290,000 year
On-site · Fort Meade, Maryland, United States
Job Summary
Senior Systems Engineer leading the NSA Enterprise Endpoint Detection and Response (EDR) program. Shapes architecture, integration, deployment, and optimization of endpoint security platforms including Microsoft Defender for Endpoint and Trellix HX across hybrid environments (on‐prem, cloud, VDI). Develops deployment strategies and implementation plans, optimizes agent configurations and exclusion policies, maintains endpoint health at scale, and translates threat intelligence into technical IOCs using KQL and YARA. Serves as a primary advisor to government stakeholders on system risks and engineering recommendations; provides advanced forensic and SOC support during incidents; mentors junior engineers. Strong emphasis on DoD 8570/8140 IAM baseline compliance, MBSE methods, and collaboration across high‐consequence, highly classified environments.
Required Qualifications
- Bachelor’s degree in Systems Engineering, Computer Science, Information Systems, Engineering Science, Engineering Management, or related field
- 20+ years of experience as a Systems Engineer on programs of similar scope, type, and complexity
- Five (5) additional years of Systems Engineering experience may be substituted for a bachelor’s degree
- Microsoft Defender for Endpoint Expertise: Hands-on engineering experience with MDE architecture, deployment via MECM/SCCM or Intune, policy ring management, and advanced hunting using Kusto Query Language (KQL)
- Trellix HX Expertise: Deploy and manage Trellix HX controllers and agents in restricted networks, including OpenIOC and YARA rules
- Operating System & Forensic Knowledge: Deep understanding of Windows, Linux, and macOS internals
- Professional Certifications: DoD 8570/8140 IAM Level II or III baseline requirements
- Desired Certifications: Microsoft Security Operations Analyst (SC-200), Azure Security Engineer (AZ-500), Trellix engineering certifications
- Model-Based Systems Engineering (MBSE)
- Jira/Confluence (Atlassian)
- NSA Technical Manual standards (NSA DS-89) and defense-in-depth engineering principles
- Core competencies: collaboration, transparency, mentoring
- Experience with threat hunting and intelligence to technical IOCs using KQL and YARA
- Experience with MDE deployment via MECM/SCCM or Intune
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.