Trellix Endpoint DLP Engineer - Active TS/SCI with CI Poly
Design, deploy, manage, and operationalize enterprise endpoint data protection controls as a Trellix Endpoint Data Loss Prevention (DLP) Engineer. Serve as the technical owner for Trellix EDR/DLP components, ensuring sensitive data is identified, monitored, and protected across the enterprise. Use analytical, engineering, and stakeholder engagement capabilities to assist with information protection strategy. Play a core role in safeguarding the organization's data. Build an enterprise-grade data protection program with visibility across security leadership, risk, and operational teams. Lead enterprise deployment, configuration, tuning, and maintenance of Trellix Endpoint DLP, including policy automation, agent health, and performance optimization. Assist with analyzing, testing, and operationalizing DLP policies, rulesets, classification logic, and incident workflows aligned to data governance requirements. Integrate the Trellix DLP platform with SIEM, SOAR, CASB, CMDB, and identity security tools for end-to-end visibility and automated response. Analyze DLP telemetry, alerts, and incidents to identify data exfiltration patterns, risk signals, and false positives. Partner with legal, compliance, data governance, and HR to define rulesets, thresholds, and exception workflows. Develop engineering playbooks, standard operating procedures, and runbooks for policy lifecycle management. Manage endpoint agent health, upgrades, change control, and enterprise-wide platform stability. Conduct root-cause analysis for user-impact, policy misfires, broken workflows, and endpoint inventory issues. Provide guidance to application and business teams on data classification, tagging, and secure data-handling practices. Align DLP implementations with Zero Trust, privacy, and enterprise data protection strategies.
- 4+ years of experience in cybersecurity engineering, data protection, or endpoint security
- 2+ years of experience with Trellix Endpoint DLP, Trellix ePO, associated modules, agent-based controls, and Windows and Linux endpoint management and troubleshooting
- 2+ years of experience developing and deploying solutions for highly regulated industries such as healthcare, finance, federal, defense, and energy
- Experience with integration patterns across SIEM, SOAR, and identity security platforms, and broader Trellix or McAfee security stack such as ENS, DLP Monitor, DLP Discover, and ePO
- Experience with scripting in PowerShell, Python, or Bash for automation and workflow optimization, creating classification taxonomies, and integrating DLP with enterprise data catalogs
- Ability to interpret data movement patterns and policy outcomes
- Active TS/SCI clearance; willingness to take a polygraph exam
- Associate’s degree and 5+ years of experience supporting IT projects and activities, Bachelor’s degree and 3+ years of experience supporting IT projects and activities, or Master’s degree and 1+ years of experience supporting IT projects and activities. Years of experience may be accepted in lieu of degree
- DoD 8570.01-M Information Assurance Technician (IAT) Level II Certification such as Security+ CE, CCNA-Security, GSEC, SSCP, CySA+, GICSP, or CND Certification
- Ability to obtain a DoD 8570.01-M Cybersecurity Service Provider - Infrastructure Support Certification such as CEH, CHFI, CFR, Cloud+, or CND Certification, within 30 days of start date
Additional Qualifications:
- Knowledge of data loss prevention concepts, endpoint security controls, and data classification models
- Possession of strong analytical skills
Essential Network Security (ENS) Solutions, LLC is a service-disabled veteran owned, highly regarded IT consulting and management firm. ENS consults for the Department of Defense (DoD) and Intelligence Community (IC) providing innovative solutions in the core competency area of Identity, Credential and Access Management (ICAM), Software Development, Cyber and Network Security, System Engineering, Program/Project Management, IT support, Solutions, and Services that yield enduring results. Our strong technical and management experts have been able to maintain a standard of excellence in their relationships while delivering innovative, scalable and collaborative infrastructure to our clients.
Why ENS?
- Free Platinum-Level Medical/Dental/Vision coverage, 100% paid for by ENS
- 401k Contribution from Day 1
- PTO + 11 Paid Federal Holidays
- Long & Short Term Disability Insurance
- Group Term Life Insurance
- Tuition, Certification & Professional Development Assistance
- Workers’ Compensation
- Relocation Assistance
Average salary estimate
If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.
Experienced Endace platform engineer with an active TS/SCI (CI poly) is needed to lead enterprise packet-capture architecture, integration, and sustainment across high-security environments.
Reliable Robotics is hiring a Client Platform Engineer in Mountain View to develop and automate end-user IT platforms, manage SaaS/on‑prem/cloud infrastructure, and support company-wide standardization and security efforts.
Experienced enterprise architect needed to lead architecture, governance, and roadmap activities for a federal digital modernization program in Washington, DC.
Trase Systems is hiring a Cloud Security Engineer to secure production multi‑cloud infrastructure, implement cloud-native security controls, and partner with engineering teams to ensure systems are secure by design.
Rice University seeks a detail-oriented Support Specialist II to provide high-quality, user-focused IT support and contribute to continuous improvement across campus technology services.
A Senior Cybersecurity Engineer to lead development and automation of AbbVie's secrets discovery program, combining software development, cyber intelligence, and data analytics to identify and remediate exposed secrets.
Serve as the technical architect leading a comprehensive assessment and modernization strategy for a 52-application School Finance portfolio, producing risk-scored evaluations, architecture diagrams, and a phased modernization roadmap.
Experienced security professional needed to run vulnerability scanning, manage STIG compliance, and support RMF accreditation for enterprise assets at Agile Defense in Quantico, VA.
Lead FCAR technology strategy and operations as Senior Manager, Business Solutions at NBCUniversal, driving cross-functional projects and system reliability for Participations and Residuals.
Guidehouse is hiring an experienced ServiceNow Technical Lead to architect and lead complex ServiceNow implementations supporting federal clients in San Antonio.
CloudLinux is hiring a Lead Security Operations Engineer to lead detection, incident response, and threat intelligence initiatives across a global remote infrastructure.
NBCUniversal is hiring a Sr Cyber Security Manager to drive threat-centric security strategy, stakeholder engagement, and operational cyber programs for NBC Sports and major live events.
Northwestern Medicine is hiring an Application Analyst Associate to provide application support, resolve production issues, and assist with system integration and quality assurance across the IS environment.
Daxko is hiring a Manager of Security Operations & Engineering to lead SOC maturity, incident response, and cloud/IAM security programs while coaching and growing a team of security engineers and analysts.
🔮
Hi, I'm Risa! Your AI Career Copilot
you, just ask me below!
