Endpoint Security Management Team Lead

Peraton is seeking a Endpoint Security Management Team Lead to join our team of qualified, diverse individuals. The ideal candidate will support the Department of Homeland Security (DHS). This individual is will oversee the deployment, maintenance, and enhancement of Trellix (formerly McAfee) endpoint security solutions. This leadership role requires expertise in endpoint security, threat prevention, compliance enforcement, and automation while managing a team responsible for securing enterprise endpoints. The ideal candidate will drive endpoint security strategies, incident response, policy enforcement, and process improvements to safeguard the organization against evolving cyber threats.

Day to Day Responsibilities:

Leadership & Strategy:

• Lead and mentor the Endpoint Security Management team, ensuring best practices in endpoint protection, vulnerability management, and threat mitigation.
• Develop and execute the enterprise endpoint security strategy, aligning with cybersecurity policies and compliance requirements.
• Act as the primary point of contact for endpoint security-related matters, collaborating with IT, Security Operations, and Compliance teams.
• Provide executive-level reporting on endpoint security risks, incidents, and remediation plans.

Trellix/McAfee Endpoint Security Management:

• Oversee deployment, configuration, and optimization of Trellix/McAfee ePO, ENS, DLP, Application Control, and other security modules.
• Ensure continuous policy enforcement and security compliance across all endpoints (Windows, macOS, and Linux).
• Manage signature updates, patching, and security configurations to protect against malware, ransomware, and advanced threats.
• Lead investigations into endpoint security incidents, performing root cause analysis and coordinating remediation efforts.

Automation, Optimization & Compliance:

• Develop automation scripts using PowerShell, Python, or Ansible to improve endpoint security operations.
• Implement and maintain endpoint security policies to meet industry compliance standards (ISO 27001, NIST, HIPAA, GDPR, PCI-DSS, etc.).
• Work with the SOC team to integrate endpoint security data into SIEM platforms (Splunk, Sentinel, etc.) for enhanced threat detection.
• Conduct security assessments and audits to identify gaps and improve endpoint security posture.

Incident Response & Threat Mitigation:

• Act as the escalation point for complex endpoint security incidents, coordinating with threat intelligence and forensic teams.
• Develop and maintain incident response playbooks for endpoint-related threats.
• Provide strategic recommendations to enhance endpoint threat detection and response capabilities.

Training, Documentation & Team Development:

• Develop and maintain detailed security documentation, playbooks, and SOPs.
• Conduct training sessions to enhance endpoint security awareness across IT and security teams.
• Stay current with emerging threats, security trends, and Trellix/McAfee product updates to ensure a proactive security posture.

#TSAIMPACT

Basic Qualifications:

• Bachelors degree and 8 years of experience or a Masters degree and 6 years of experience or a High School diploma and 12 years of experience

• Experience in endpoint security, cybersecurity, or IT security operations.
• Extensive expertise in Trellix/McAfee endpoint security products (ePolicy Orchestrator (ePO), Endpoint Security (ENS), DLP, Application Control, etc.).
• Strong understanding of endpoint security frameworks, malware analysis, and advanced threat protection.
• Proficiency in scripting and automation using PowerShell, Python, or Bash.
• Experience managing security in hybrid environments (on-prem & cloud - Azure, AWS, Google Cloud).
• Knowledge of regulatory compliance frameworks (ISO 27001, NIST, CIS, HIPAA, GDPR, etc.).
• Strong leadership, project management, and stakeholder communication skills.
• Experience working with SIEM platforms (Splunk, Microsoft Sentinel, etc.).

Preferred Certifications:

• Trellix/McAfee Certified Product Specialist (ePO, ENS, or related).
• CISSP (Certified Information Systems Security Professional).
• CRISC (Certified in Risk and Information Systems Control).
• CISM (Certified Information Security Manager).
• CompTIA Security+ or CEH (Certified Ethical Hacker).
• ITIL Foundation Certification (preferred for IT management, must obtain within 30 days of employment).

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.