Posted on Sep 12, 2019 by Booz Allen Hamilton Inc.
Work with a team in a dynamic environment to develop and tune Host-Based Security System (HBSS) policies for network assets. Install, configure, and maintain HBSS Servers and dependent systems and perform verification and troubleshooting across all HBSS modules. Perform Tier IV troubleshooting, analyze policy, and perform IPS signature review for accredited systems. Install, configure, and maintain multiple HBSS Servers and dependent systems. Develop XML policies for HIPS Firewalls, HIPS application whitelisting, including McAfee Solidcore, and a national agency's AWL, HIPS exclusions, DLP exclusions, and VSE exclusions. Join Booz Allen's client facing Cybersecurity team and work with the Navy's premier shipyard on developing an SOC and robust continuous monitoring program. This position is located in Bremerton, WA.
-5+ years of experience with network or systems engineering or systems administration
-2+ years of experience with HBSS
-Experience with HBSS ePO server administration and maintenance
-Experience with standard HBSS modules, including McAfee Agent (MA), Host Intrusion Prevention System (HIPS), Data Loss Prevention (DLP), Policy Auditor (PA), VirusScan Enterprise (VSE), Rogue System Detection (RSD), Asset Baseline Monitor (ABM), and Asset Configuration Compliance Module (ACCM)
-Experience with analyzing policies for HIPS firewall, HIPS application whitelisting, HIPS intrusion prevention exclusions, DLP exclusions, and VSE exclusions
-Active Secret clearance
-HS diploma or GED required
-IA Workforce 8570 Certification, including Security+ or equivalent
-Experience with HBSS HIPS signature review and verification of signature and exceptions
-Experience with ACAS SC and ACAS Nessus scanner administration and maintenance
-Experience with troubleshooting ACAS SC to ACAS scanner synchronization
-Knowledge of configuring primary operating systems, including Microsoft Windows, UNIX, or Linux
-Knowledge of Navy shipboard networks
-Knowledge of using and applying vulnerability assessment tools, including Nessus, Security Content Automation Protocol (SCAP), Secure Technical Implementation Guides (STIGs), checklists, and Security Requirements Guides (SRG)
-BA or BS degree
-Completion of a DoD 201 HBSS Administrator Course
-Completion of a DoD 301 HBSS Advanced Administrator Course
-Completion of a DoD 501 HBSS Analyst Course
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.
We're an EOE that empowers our people-no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic-to fearlessly drive change.#LI-AH1, APC3, CJ1