Peraton requires an Endpoint Security Administrator to support the Special Operation Command Information Technology Enterprise Contract (SITEC) – 3 EOM.  This position is located at MacDill AFB in Florida.

The purpose of the Special Operations Forces Information Technology Enterprise Contract (SITEC) 3 Enterprise Operations and Maintenance (EOM) Task Order (TO) is to provide USSOCOM, its Component Commands, its Theater Special Operations Commands (TSOCs), and its deployed forces with Operations and Maintenance (O&M) services to maintain Network Operations (NetOps); maintain systems and network infrastructure; provide end user and common device support; provide configuration, change, license, and asset management; conduct training, and perform Install, Move, Add, Change (IMACs) services. The responsibilities and tasks associated with each requirement play a pivotal role to USSOCOM, the CIO/J6 organization, and ultimately the end-user who operate around the globe 24x7x365. 

Description:

Endpoint and Application Security Administrators are responsible for the overall security posture and policy enforcement across all enterprise devices. This role owns the administration, configuration, and maintenance of the endpoint and application security infrastructure. Key responsibilities include deploying and managing security baselines, configuring device security policies such as antivirus and disk encryption, and administering application control policies. The administrator will proactively monitor for security threats, vulnerabilities, and compliance discrepancies, and will support incident response operations by implementing countermeasures and security controls as directed.

Duties Include: 

• Deploy, manage, and enforce security baselines and configuration policies across all on-premises and cloud-based Windows and Linux endpoints.
• Administer and configure device security settings, including antivirus/antimalware, host firewall, and full-disk encryption for both physical and virtual machines.
• Manage and secure cloud workloads (e.g., VMs, containers) in IaaS/PaaS environments using Cloud Workload Protection Platforms (CWPP).
• Develop and manage application control policies (whitelisting/blacklisting) to prevent unauthorized software execution across the hybrid environment.
• Ensure consistent security policy enforcement and visibility across both on-premises and multi-cloud (e.g., Azure, AWS) infrastructures.
• Continuously monitor the entire hybrid environment for anomalous activity, emerging threats, vulnerabilities, and configuration discrepancies.
• Integrate endpoint security with cloud-native security services and identity providers (e.g., Azure AD/Entra ID) to enforce conditional access and zero-trust principles.
• Act as a point of escalation for the Security Operations Center (SOC) to investigate and respond to security incidents, regardless of where the endpoint resides.
• Support threat-hunting operations by implementing security controls and countermeasures across both on-premises and cloud assets.
• Manage the complete lifecycle of endpoint security tools, ensuring seamless operation and integration within a hybrid architecture.
• Remove or manage local administrative rights on endpoints to reduce the attack surface.
• Ensure the health and compliance of all managed devices, remediating any that are out of compliance.
• Collaborate with IT, Cloud, and other security teams to streamline endpoint management and improve automation across the hybrid estate.
• Assist with end-user troubleshooting efforts related to endpoint security controls.
• Use endpoint security tools to remediate vulnerabilities and misconfigurations identified by security scans.

Required Qualifications: 

• Min 9 years with HS Diploma, 7 years AS/AA degree, 5 years with BS/BA degree, 3 years with MS/MA
• A DoD TS/SCI clearance is required
• DoDD 8570.01-M IAT II
• Experience Managing the complete lifecycle of endpoint security tools

Desired Qualifications:

• Strong written and communication skills.
• Ability to thrive in a dynamic, fast-paced environment.