SITEC - Endpoint Security Administrator - MacDill AFB

Peraton requires an Endpoint Security Administrator to support the Special Operation Command Information Technology Enterprise Contract (SITEC) – 3 EOM.  This position is located at MacDill AFB in Florida.

 

The purpose of the Special Operations Forces Information Technology Enterprise Contract (SITEC) 3 Enterprise Operations and Maintenance (EOM) Task Order (TO) is to provide USSOCOM, its Component Commands, its Theater Special Operations Commands (TSOCs), and its deployed forces with Operations and Maintenance (O&M) services to maintain Network Operations (NetOps); maintain systems and network infrastructure; provide end user and common device support; provide configuration, change, license, and asset management; conduct training, and perform Install, Move, Add, Change (IMACs) services. The responsibilities and tasks associated with each requirement play a pivotal role to USSOCOM, the CIO/J6 organization, and ultimately the end-user who operate around the globe 24x7x365. 

 

Endpoint and Application Security Administrators are responsible for the overall security posture and policy enforcement across all enterprise devices. This role owns the administration, configuration, and maintenance of the endpoint and application security infrastructure. Key responsibilities include deploying and managing security baselines, configuring device security policies such as antivirus and disk encryption, and administering application control policies. The administrator will proactively monitor for security threats, vulnerabilities, and compliance discrepancies, and will support incident response operations by implementing countermeasures and security controls as directed.

 

• Deploy, manage, and enforce security baselines and configuration policies across all on-premises and cloud-based Windows and Linux endpoints.
• Administer and configure device security settings, including antivirus/antimalware, host firewall, and full-disk encryption for both physical and virtual machines.
• Manage and secure cloud workloads (e.g., VMs, containers) in IaaS/PaaS environments using Cloud Workload Protection Platforms (CWPP).
• Develop and manage application control policies (whitelisting/blacklisting) to prevent unauthorized software execution across the hybrid environment.
• Ensure consistent security policy enforcement and visibility across both on-premises and multi-cloud (e.g., Azure, AWS) infrastructures.
• Continuously monitor the entire hybrid environment for anomalous activity, emerging threats, vulnerabilities, and configuration discrepancies.
• Integrate endpoint security with cloud-native security services and identity providers (e.g., Azure AD/Entra ID) to enforce conditional access and zero-trust principles.
• Act as a point of escalation for the Security Operations Center (SOC) to investigate and respond to security incidents, regardless of where the endpoint resides.
• Support threat-hunting operations by implementing security controls and countermeasures across both on-premises and cloud assets.
• Manage the complete lifecycle of endpoint security tools, ensuring seamless operation and integration within a hybrid architecture.
• Remove or manage local administrative rights on endpoints to reduce the attack surface.
• Ensure the health and compliance of all managed devices, remediating any that are out of compliance.
• Collaborate with IT, Cloud, and other security teams to streamline endpoint management and improve automation across the hybrid estate.
• Assist with end-user troubleshooting efforts related to endpoint security controls.
• Use endpoint security tools to remediate vulnerabilities and misconfigurations identified by security scans.

 

 

• Min 12 years with HS Diploma, 10 years AS/AA degree, 8 years with BS/BA degree, 6 years with MS/MA, 3 years with PhD
• A DoD TS/SCI clearance is required
• DoDD 8570.01-M IAT II
• Experience Managing the complete lifecycle of endpoint security tools

• Strong written and communication skills.
• Ability to thrive in a dynamic, fast-paced environment.

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.

$86,000 - $138,000. This represents the typical salary range for this position. Salary is determined by various factors, including but not limited to, the scope and responsibilities of the position, the individual’s experience, education, knowledge, skills, and competencies, as well as geographic location and business and contract considerations. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay.

EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.