Job Description

TCI has an immediate need for a HBSS Administrator in Colorado Springs, CO. This is not a Corp2Corp opportunity. This is a long-term contract opportunity with the possibility of hire. In addition to competitive, market-rate based pay, TCI provides all our Consultants with Comprehensive Medical/Dental Insurance, 401k, Life Insurance and Long-Term Disability benefits.
Please note that this position requires US Citizenship and a Secret Security Clearance prior to start.
Must be on-site Peterson AFB (CO)
The Senior HBSS Engineer works on a geographically dispersed team that manages a global enterprise network environment to develop, integrate, and configure Host Based Security System (HBSS) services and policies for DoD networks and endpoints.
  • Develop, configure, and maintain HBSS servers and dependent systems. Perform verification and troubleshooting across all HBSS modules.
  • Design, buildout, integrate, and fine tune program HBSS service architecture, including McAfee ePolicy Orchestrator (ePO) server, McAfee Active Response, McAfee Adaptive Threat Prevention (ATP), Host Intrusion Prevention System (HIPS), VirusScan Enterprise (VSE), Endpoint Security (ENS) Exploit Prevention, McAfee Endpoint Security Advanced Threat Detection (ATD), McAfee Application\Change Control, Rogue System Detection (RSD), USAF Asset Compliance Configuration Module (ACCM), and ePO dependencies such as Microsoft (MS) Structured Query Language (SQL) Server 2012/2014 R2 and Apache.
  • Provide input throughout the Certification and Accreditation (C&A) lifecycle and have a working knowledge of the Risk Management Framework (RMF), system security architectures best practices, security policies, technical security safeguards, and operational security measures.
  • Provide software upgrades as needed to include implementing security patches, bug fixes or other critical updates as they become available.
  • Assist the Air Force program and their customers with deployment, tuning, and configuration of HBSS modules and policies.
  • Validate and coordinate all HBSS scheduled maintenance.
  • Create custom Firewall policies and work with Information Systems Security Manager (ISSM) and Information System Security Officers (ISSOs) to identify, configure and apply HIPS signatures to protect against zero-day threat.
  • Create firewall exclusions based on customer demand and the Assessment and Authorization (A&A) process.
  • Troubleshoot VM and SQL issues that conflict with the basic functionality of ePO.
  • Create ePO queries and reports to collect various deployment statistics as required.
  • Have experience with scripting and automation of McAfee ePO and Agent capabilities such as PowerShell and McAfee ePO Endpoint Deployment Kit.
  • Have extensive knowledge of ePO server task and query implementations used to automate various HBSS facets such as endpoint module deployments and compliance.
  • Monitor status, evaluate, and coordinate customer compliance with orders and directives.
  • Assist in preparation for security inspections and support other DoD initiatives related to HBSS.
  • Coordinate with the ISSM and ISSOs regarding malicious events detected via HBSS and update incident reports as needed with supplementary HBSS data.
  • Bachelor’s Degree in a related field and 6 years of relevant experience required. Four additional years of relevant experience may be substituted for the degree.
  • Experience developing policy for HIPS firewall, HIPS application whitelisting, HIPS intrusion prevention exclusions, DLP exclusions, and VSE exclusions.
  • Experience with HBSS HIPS signature review and verification of signature and exception.
  • Experience with system administration including Microsoft Windows, UNIX, or Linux.
  • Experience with Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG) validation / compliance implementation.
  • Experience with McAfee ePolicy Orchestrator Host Based Security System (HBSS) and Endpoint Security Solution (ESS) architecture design and implementation.
  • SQL database experience (medium level).
  • Implementing National Institute of Standards and Technology (NIST) and RMF standards and framework.
  • Strong systems engineering, development, integration, and troubleshooting skills.
  • Certification: Must maintain current CompTIA Security+ or higher certification.
  • Must have HBSS 201, 301, and 501.
  • Must currently possess an Active Secret Security Clearance.
  • Hourly contractor rate will be $55-$60/hr for well qualified candidates.

Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!

Apply Online