INFO SECURITY ANALYST IV (AntiVirus Engineer-Senior)--Washington DC 20549

title: INFO SECURITY ANALYST IV (AntiVirus Engineer-Senior)
Location: Washington DC 20549
duration: 6 months,
security clearance: Public trust
Interview: virtual

The AntiVirus Engineer-Senior supports the contract by leading enterprise anti-virus operations that protect workstations and servers across the agency environment. This role is responsible for centralized policy administration, secure deployment and configuration, signature/DAT and engine currency, and scheduled scanning to maintain consistent endpoint protection. The engineer serves as an escalation point for complex malware and endpoint security incidents, driving rapid restoration and durable corrective actions. The position also supports ISS objectives for zero-trust enforcement, SLA-driven service delivery, and FISMA-aligned operational documentation.

WORK ENVIRONMENT / OTHER :
Operational Support: May require participation in on-call or surge support activities depending on operational needs.
Location: Washington, DC Metropolitan Area (on-site at SEC facilities with approved telework as directed by contract/task order).
Travel: As required per contract direction.

PRIMARY RESPONSIBILITIES :
Enterprise Anti-Virus Operations
- Manage and lead day-to-day deployment and configuration of enterprise anti-virus software across required workstations and servers.
- Administer centrally managed anti-virus policies, exceptions, and protection settings through enterprise management servers/consoles.
- Manage anti-virus signature/DAT and engine updates to maintain current protection coverage across the endpoint fleet.
- Execute and validate scheduled anti-virus scans, update tasks, and protection health checks.
Centralized Management and Endpoint Integration :
- Operate and optimize centralized anti-virus management platforms (e.g., enterprise policy orchestration tools) to enforce standardized controls.
- Coordinate anti-virus configurations with endpoint management processes, baseline images, and software deployment standards.
- Support pre-production testing and controlled rollout of anti-virus policy or agent changes to reduce operational risk.
- Maintain and update SOPs, runbooks, and configuration baselines for endpoint protection operations.
Incident Response and Escalation Support :
- Troubleshoot complex anti-virus and malware-related issues requiring senior-level escalation support and subject matter expertise.
- Perform incident triage, technical analysis, and root-cause identification for endpoint protection failures or infections.
- Coordinate with support teams and stakeholders to restore services quickly and prevent repeat incidents.
- Document actions, status, and resolution details in approved ticket/workflow systems in alignment with ISS support processes.
Security Compliance, Reporting, and Continuous Improvement :
- Support vulnerability identification, tracking, and remediation activities related to endpoint protection controls and findings.
- Monitor anti-virus operational metrics (coverage, update compliance, scan status, incident trends) and provide regular reporting.
- Ensure endpoint protection operations align with SEC security policies, change control requirements, and audit readiness expectations.
- Contribute to zero-trust and continuous-improvement efforts by recommending automation and control enhancements for endpoint security operations.

REQUIRED QUALIFICATIONS :
Citizenship/Work Authorization: Must meet contract requirements.
Clearance: Ability to obtain and maintain SEC Public Trust (or higher if required).
Education: Bachelor's degree in a relevant field (e.g., Information Technology, Computer Science, Engineering).

Experience:
- Minimum 8 years of experience, including 7-10 years of related experience managing and leading support of enterprise anti-virus software solutions.
- Demonstrated experience using centralized anti-virus management platforms (e.g., enterprise policy orchestration tools).
- Experience deploying, configuring, and sustaining anti-virus controls for both workstation and server operating environments.

Technical Skills:
- Enterprise anti-virus administration for workstation and server endpoints
- Centralized policy/orchestration management consoles
- Signature/DAT and engine update lifecycle management
- Malware scanning operations, scheduling, and health validation
- Escalated incident troubleshooting and root-cause analysis

PREFERRED QUALIFICATIONS :
- Prior experience supporting a federal civilian agency IT contract with FISMA-driven security and audit requirements.
- Hands-on experience integrating endpoint protection operations with Microsoft Intune or comparable endpoint management platforms.
- Experience implementing endpoint controls aligned to zero-trust security objectives.
- Experience with ServiceNow-based ticketing, escalation workflows, and SLA performance reporting.
- Experience managing endpoint POA&M remediation and response to Known Exploited Vulnerabilities (KEV) timelines.
- CompTIA Security+
- Trellix/McAfee ePO certification
- Microsoft Certified: Security Operations Analyst Associate (SC-200)