Endpoint Security Engineer (Contract) – Los Angeles, CA

Long-term contract opportunity available in the next 30 days. Multiple consultants needed to assist our client with their McAfee Endpoint Security.

Duties & Responsibilities:

  • Ensure the security tools like McAfee Change Control (MACC), Endpoint Security (ENS) for Windows and Linux, ePolicy Orchestrator (ePO) DAT Endpoint Deployment, Package Management and Vuln Management Tools (Nessus, Burp Suite) are operationally maintained.
  • Work with Security Analyst and Security Architects to verify security is implemented properly, and new network and computing environments meet McAfee security standards and policies.
  • Work with other members of the Security Operations Team dedicated to assisting in ensuring visibility and monitoring capabilities are available, for root causing analysis on security-related events and threat hunting exercises.
  • Assist with investigations of network and hosts/endpoints for malicious activity, to include analysis of event data, and assist in efforts to detect, confirm, contain, remediate, and recover from attacks; Assist in response to global security incidents including coordination and leadership during security incident and malware outbreaks.
  • Review network and system logging standards to determine compliance with security standards and frameworks for onboarding new projects.
  • Collect and remediate executive summaries on vulnerability metrics for product deployments and control gap assessments. Contribute to overall Information Security processes, procedures, policies, standards, architecture, and supporting documentation.
  • Troubleshoot performance issues and adjusting policies to balance security and performance of systems
  • Review and respond to McAfee threat alerts, including adding and writing new threat prevention rules and configuration
  • Review threat events, including tuning, adding exceptions and reviewing and writing new rules

Minimum Qualifications

  • Experience managing McAfee ePO
  • McAfee MOVE, Change Control, ENS and ePO deployment experience
  • Deploying and configuring McAfee Endpoint Security products to servers and workstations including:
    • Endpoint Security Threat Prevention, Adaptive Threat Protection, Exploit
    • Prevention, MAR, DXL, TIE, DLP, Drive Encryption, Firewall, Web Control
  • McAfee Application Whitelisting experience
  • Ability to support and troubleshoot Endpoint Security related issues and McAfee ePO and systems issues
  • Experience with SQL server database to support ePO
  • Ability to write queries for alerting and reporting
  • 5 – 7 years equivalent work experience in Computer Science, Information Security and/or Risk Management or Information Systems Engineering
  • Minimum of 5 years of security operations experience, securely hardening and maintaining security tools.
  • Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC), or equivalent cloud certification experience.
  • Experience working with security incident response and threat mitigation or containment practices.
  • Experience with near real-time monitoring, tuning, optimization, and troubleshooting