Endpoint Security Analyst

Resource Management Concepts, Inc. (RMC) provides high-quality, professional services to government and commercial sectors. Our mission is to deliver exceptional management and technology solutions supporting the protection and preservation of the people and environment of the United States of America.

RMC is hiring an Endpoint Security Analyst to support and the maintenance, deployment, and functionality of the Marine Corps Enterprise Network (MCEN) Endpoint Protection Tool globally against cybersecurity threats. Candidates would ensure endpoint security policies, rules and/or configurations are functional on Marine Corps endpoints. This includes desktops, laptops, servers, virtual machines, cloud instances, mobile devices, Internet of Things (IoTs), and more.

The candidate shall be responsible for providing support to the Defense Cyberspace Operation's Sensor Grid Engineering (SGE) team. Activities in support of this position include endpoint/host security utilizing Host Based Security System (HBSS) and/or Microsoft Defender for Endpoint (MDE).

• This position is 100% on-site support. There may be potential opportunities for limited telework, determined by performance and customer needs.
• Monday through Friday work schedule. Core hours support 7:00am to 5:00pm.
• Some after-hours support maybe required on occasion (i.e.: surge support for EndPoint devices and/or patching servers during non-peak times).
• The Endpoint Security Analyst will ensure endpoint protection tool is available for devices (laptops, desktops, servers, and mobile devices) and provide endpoint security protection and detection.
• The Analyst will be responsible for Implementing and managing endpoint protection tools.
• MDE Tool Patch management, along with appropriate upkeep and corresponding security fixes.
• Assist in the investigation and remediating security incidents related to the MCEN endpoint tools.
• Follow security-recommended and best-practice hardening disciplines.
• Patch and Configuration Compliance: The Endpoint Security Analyst must have the ability to update software to versions not impacted by known security or functionality issues, to include the ability to generate compliance numbers for Information Assurance Vulnerability Advisories (IAVAs) and Common Vulnerability and Exposure (CVE) and specific settings related to Secure Technical Implementation Guide (STIG) requirements.
• Application Whitelisting: Must have the ability to control program execution based on an approved software list.
• Application Containment: Candidate must have the ability to block or log unsafe actions based on a configured policy or by reputation of the requested action/process.