Cyber Systems Engineer 3– Cyber Tools Engr (ess) (26-309)

Northrop Grumman Northrop Grumman · Aerospace · Colorado Springs, CO +1 · Cyber

Northrop Grumman is seeking a Cyber Systems Engineer with expertise in designing, developing, and maintaining security policies and deployments for Trellix Endpoint Security Suite. The role involves large-scale deployments, upgrades, patching, optimization, troubleshooting, and developing technical documentation. Requires a Bachelor's degree, 5+ years of experience, IAT Level II certification, and an active Secret security clearance. Experience with Trellix ePO, ENS, Windows/Linux administration, and scripting is essential.

What you'd actually do

  1. Design, develop, configure, and maintain security policies, tasks, and deployments for the Trellix Endpoint Security Suite, including ePolicy Orchestrator (ePO), Endpoint Security (ENS), the C2BMC Testbed (CTB), and Ops in the NT labs
  2. Perform large-scale deployments, upgrades, patching, and optimization of Trellix agents and servers across Windows and Linux environments while minimizing disruption to operations
  3. Develop and maintain comprehensive technical documentation, including standard operating procedures (SOPs), policy guides, STIG compliance reports, and configuration baselines
  4. Troubleshoot complex endpoint security issues, conduct root-cause analysis, tune policies to reduce false positives, and implement automated remediation workflows
  5. Assist with implementing STIG, conducting security audits, and meeting continuous monitoring needs

Skills

Required

  • Bachelor's Degree in Computer Science, Software Engineering, Computer Engineering, Mathematics, Physics, or a related field, or equivalent experience
  • 5-8 years of IT security or systems administration experience
  • 3+ years of hands-on experience administering and engineering Trellix (or legacy McAfee/HBSS) Endpoint Security solutions
  • Experience deploying, configuring, and maintaining Trellix ePO, Endpoint Security (ENS)
  • Experience with Windows Server and client administration
  • Working knowledge of Linux endpoint management
  • Experience with scripting for automation
  • Experience creating technical documentation
  • Strong analytical and troubleshooting skills
  • Ability to work independently and as part of a team
  • Strong communication skills

Nice to have

  • DoD 8140 certification at IAT Level II or higher
  • Secret security clearance
  • Experience with Trellix ePO administration, policy creation, extensions, and reporting
  • In-depth understanding of Trellix Endpoint Security (ENS)
  • Strong understanding of endpoint security concepts, threat-hunting basics, malware analysis, and zero-trust principles
  • Experience with STIG compliance
  • Experience with continuous monitoring

What the JD emphasized

  • current, active DoD 8140 certification at IAT Level II or higher
  • current, active in-scope DoD-issued Secret security clearance
  • hands-on experience administering and engineering Trellix (or legacy McAfee/HBSS) Endpoint Security solutions