HBSS Engineer

Description

We are seeking a highly skilled HBSS Engineer in Fort Belvoir, VA with deep expertise in Tanium to support the deployment, configuration, maintenance, and optimization of host-based security systems across a large-scale enterprise environment. The ideal candidate will be a cybersecurity professional with hands-on experience in endpoint detection and response (EDR), system hardening, threat hunting, and compliance monitoring using Tanium, and have a strong understanding of DoD HBSS architecture and policy.

Key Responsibilities:

• Deploy, configure, and manage Tanium modules (e.g., Comply, Deploy, Discover, Threat Response, Asset, etc.) across enterprise networks.
• Administer, monitor, and troubleshoot HBSS systems, ensuring effective endpoint protection, policy enforcement, and alerting.
• Integrate Tanium with existing SIEM, SOAR, and vulnerability management tools.
• Conduct regular system scans, vulnerability assessments, and compliance checks to maintain organizational security standards (e.g., DISA STIGs, NIST 800-53).
• Perform threat detection, root cause analysis, and remediation support in real time.
• Generate detailed reports for security audits, compliance reviews, and incident response.
• Collaborate with other cybersecurity teams to develop and enforce endpoint security policies.
• Provide subject matter expertise (SME) on Tanium capabilities and recommend enhancements to security posture.
• Maintain system documentation and update configuration baselines as needed.

• Bachelor's degree in Information Technology, Cybersecurity, or a related field and 8 - 12 years of prior relevant experience. Specific experience, education and training may be considered in lieu of degree.
• Active DoD 8570 IAT Level II certification (e.g., Security+, CySA+, CASP+, CISSP).
• 5+ years of experience with Tanium in a cybersecurity role.
• Strong experience with HBSS frameworks, especially in government or large enterprise environments.
• Solid understanding of endpoint security, operating systems (Windows/Linux), and network security principles.
• Experience with security compliance frameworks such as NIST, RMF, FISMA, or DISA STIGs.
• Familiarity with SIEM tools (e.g., Splunk, QRadar), and scripting (PowerShell, Python, etc.).
• Excellent written and verbal communication skills.
• Current TS/SCI

• Experience with other HBSS tools (e.g., Trellix ePO, , CrowdStrike, etc).
• Experience in threat hunting and incident response using Tanium Threat Response.
• Experience with automation and orchestration tools.

• Competitive salary and benefits package.
• Flexible work schedule depending on mission requirements.
• Opportunities for training, certification, and advancement.
• Collaborative team environment focused on mission success and innovation.