UAM Endpoint Policy Developer and Administrator

POSITION TITLE: UAM Endpoint Policy Developer and Administrator

YEARS OF EXPERIENCE: 3+ Years

LOCATON: Onsite - Washington, D.C.

CLEARANCE: Top Secret/SCI

*****Please Note: Aretec, Inc. does not offer Corp - 2 - Corp (C2C) employment. *****

Aretec is seeking a skilled and experienced UAM Endpoint Policy Developer and Administrator to support a federal agency in Washington, D.CThe successful candidate will be responsible for the development, implementation, and administration of Insider Threat trigger policies. The UAM Endpoint Policy Developer and Administrator will collaborate with Insider Threat analysts and various stakeholders to ensure optimal performance of threat detection capabilities. Additionally, the UAM Endpoint Policy Developer and Administrator will conduct efficiency assessments, streamline alert trigger policies, and support ongoing investigations to identify and mitigate Insider Threats.

RESPONSIBILITIES:

• Develop Insider Threat trigger policies using Forcepoint UAM expertise. This includes creating policies from code to implementation and ensuring they do not negatively impact existing support infrastructure, endpoints, and network.
• Analyze the effectiveness of UAM trigger policies and perform trend analysis to identify areas of improvement and enhance threat detection capabilities.
• Collaborate with Insider Threat analysts and stakeholder offices to gather requirements and ensure that trigger policies align with operational needs and security objectives.
• Support ongoing investigations on persons of interest, identifying data sources or unique source and methods for evidence gathering related to Insider Threats.
• Perform efficiency and gap assessments of trigger policy inventory, eliminating redundancy and streamlining alert trigger policies to gain network and storage efficiencies.
• Develop and test new trigger policies within tight timelines to meet emerging security challenges.
• Possess extensive scripting experience to develop effective trigger policies.
• Collaborate with USG personnel and stakeholders from multi-disciplinary offices to develop and document an enhanced trigger policy process for testing and implementation.
• Work within the confines and authorities of the DIA Information Technology infrastructure (CID) to test the delivery of agents/trigger policies to server-based infrastructure, expanding endpoint scope to target privileged users engaged in unauthorized activities.
• Maintain certifications in ForcePoint policy writing, Network Engineering, Microsoft Desktop Administrator, or equivalent qualifications to demonstrate technical expertise in UAM development and administration.

REQUIRED SKILLS/QUALIFICATIONS:

• Must be a U.S. citizen with active DoD Top Secret/SCI clearance; dual citizenship is not permitted.
• Must possess current DoD 8570 IAT Level II certification which includes: Security+CE, CCNA Security, CySA+, GICSP, GSEC, CND or SSCP.
• Minimum of 3 years of demonstrated experience in UAM endpoint policy development for classified and unclassified networks or deployment, configuration, support, and maintenance of classified and unclassified endpoints and operating systems.
• Extensive experience with Forcepoint UAM and expertise in developing Insider Threat trigger policies.
• Proven ability to translate written requirements into configurations for deployment to Host-based UAM capabilities and/or security client software.
• Strong scripting skills to create effective trigger policies.
• Strong analytical and problem-solving skills with the ability to assess the impact of trigger policies on enterprise infrastructure and services.
• Excellent communication and collaboration skills to work effectively with stakeholders and team members.

EDUCATION: Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent work experience.

CERTIFICATIONS:

• Must possess current DoD 8570 IAT Level II certification which includes Security+CE, CCNA Security, CySA+, GICSP, GSEC, CND or SSCP.
• Ability to obtain certifications in ForcePoint policy writing, extensive scripting experience, and Network Engineering, Microsoft Desktop Administrator, or equivalent certifications.

Aretec has become aware of fraudulent behavior whereby individuals falsely present themselves as employees, affiliates agents, recruiters or representatives of Aretec Inc. and contact job seekers regarding an employment or investment opportunity. Such fraudsters are misusing similar domain names, email addresses, marks, and logos of the Aretec Inc. to deceive the general public.

Aretec Inc. or its brands will never ask prospective job seekers for any payment to access our employment services including attending interviews or to receive job offers. Aretec Inc. or its brands, also will never ask candidates to pay a fee to secure employment or in order to receive payment of their wages or salary. In addition, Aretec Inc. or its brands do not operate any websites or mobile applications which ask people to make investments, purchase products or pay any money to receive commission payments. Aretec Inc. shall not be liable for loss or damage suffered as a consequence of any participation by any persons in any such fraudulent and unauthorized schemes.

We urge you to be cautious when opening links or attachments from unknown third parties. Except for legitimate business purposes, Aretec Inc. does not send e-mails asking for sensitive information such as bank details or other personally identifiable information nor do we charge or accept any amounts of money. Therefore, do not send money at any time to anyone claiming to be from Aretec Inc. or its brands in relation to prospective employment, or to receive wages or salary, or commission earning investments, either directly or via a mobile application. Please check all email addresses allegedly from Aretec Inc. (@aretecinc.com).