Edr Trust Jobs (NOW HIRING)

Join our dynamic team and play a pivotal role in enhancing the security posture of the NSA enterprise. We are seeking an experienced Endpoint Detection and Response (EDR) Specialist to deploy, configure, test, manage, and optimize EDR solutions across our organization. This role offers the chance to make a significant impact by establishing comprehensive Standard Operating Procedures (SOPs) and leading training sessions to empower our Security Operations Center (SOC) analysts. If you are passionate about cybersecurity and eager to contribute to a mission-critical environment, we invite you to apply.

• Deploy and Manage EDR Solutions: Install, configure, test, and monitor EDR capabilities in both on-premises and cloud environments.
• SOP Development: Create and maintain comprehensive Standard Operating Procedures for EDR functionalities.
• Training and Support: Lead training sessions for SOC analysts to maximize platform efficiency and threat visibility. Provide ongoing support to SOC functions.
• Incident Response: Assist in the coordination and analysis of security incidents, contributing to containment, eradication, and recovery efforts.
• Process Improvement: Continuously evaluate and improve EDR processes and procedures to enhance threat detection and response capabilities.

• Active TS/SCI w/ Polygraph
• Education and Experience
  • 12 years minimum experience with a High school Diploma/GED
  • 10 years minimum experience with an Associate's degree
  • 8 years minimum experience with a Bachelor's degree
  • 6 years minimum experience with a Master's degree
  • 4 years minimum experience with a Doctorate's degree
  • All experience and education must be in a technical field directly related to the labor category, and all diplomas, GED certificates, and degrees must be from accredited institutions.

• EDR Solutions: Proficiency in Trellix HX/EDRF or Microsoft Defender for Endpoint EDR, preferably both.
• Cloud Applications: Experience with cloud security and familiarity with AWS or Azure, preferably both.
• Cloud Security: Expertise in securing cloud-hosted workloads using EDR solutions. Understanding of cloud-native security controls and logging (e.g., Microsoft Sentinel, AWS CloudWatch). CCSP Certified Cloud Security Professional certification or equivalent.
• SOC Support: Experience in supporting SOC functions, including monitoring, analyst training, SOP documentation, and incident response coordination. Microsoft Certified: Security Operations Analyst Associate (SOAA) or equivalent.
• Network Security: Knowledge of network protocols, traffic analysis, and intrusion detection systems (CompTIA Security+).
• Windows Forensics: In-depth understanding of Windows OS internals, registry, and file system. Familiarity with forensic tools like EnCase, FTK, or open-source alternatives. SANS Windows Forensic Analysis (FOR500) or equivalent.

• Threat Hunting: Experience in proactively identifying and investigating potential security threats and anomalies.
• Incident Response: Proven experience in managing and responding to security incidents.
• SIEM: Familiarity with Security Information and Event Management systems for log analysis and correlation (e.g., Splunk, Elastic, Microsoft Sentinel).
• Scripting and Automation: Proficiency in scripting languages (e.g., PowerShell, Python) for automating tasks and workflows.
• CISSP: Certified Information Systems Security Professional certification.
• Microsoft 365: Microsoft 365 Certified: Endpoint Administrator Associate (MD-102).

- What You Can Expect: A culture of integrity. At CACI, we place character and innovation at the center of everything we do. As a valued team member, you'll be part of a high-performing group dedicated to our customer's missions and driven by a higher purpose - to ensure the safety of our nation. An environment of trust. CACI values the unique contributions that every employee brings to our company and our customers - every day. You'll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality. A focus on continuous growth. Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground - in your career and in our legacy. Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. The proposed salary range for this position is: $113,200 - $237,800. CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.