HBSS Engineer

Description

We are seeking a highly skilled HBSS Engineer in Fort Belvoir, VA with deep expertise in Tanium to support the deployment, configuration, maintenance, and optimization of host-based security systems across a large-scale enterprise environment. The ideal candidate will be a cybersecurity professional with hands-on experience in endpoint detection and response (EDR), system hardening, threat hunting, and compliance monitoring using Tanium, and have a strong understanding of DoD HBSS architecture and policy.

Key Responsibilities:

• Deploy, configure, and manage Tanium modules (e.g., Comply, Deploy, Discover, Threat Response, Asset, etc.) across enterprise networks.
• Administer, monitor, and troubleshoot HBSS systems, ensuring effective endpoint protection, policy enforcement, and alerting.
• Integrate Tanium with existing SIEM, SOAR, and vulnerability management tools.
• Conduct regular system scans, vulnerability assessments, and compliance checks to maintain organizational security standards (e.g., DISA STIGs, NIST 800-53).
• Perform threat detection, root cause analysis, and remediation support in real time.
• Generate detailed reports for security audits, compliance reviews, and incident response.
• Collaborate with other cybersecurity teams to develop and enforce endpoint security policies.
• Provide subject matter expertise (SME) on Tanium capabilities and recommend enhancements to security posture.
• Maintain system documentation and update configuration baselines as needed.

Required Qualifications:

• Bachelor's degree in Information Technology, Cybersecurity, or a related field and 8 - 12 years of prior relevant experience. Specific experience, education and training may be considered in lieu of degree.
• Active DoD 8570 IAT Level II certification (e.g., Security+, CySA+, CASP+, CISSP).
• 5+ years of experience with Tanium in a cybersecurity role.
• Strong experience with HBSS frameworks, especially in government or large enterprise environments.
• Solid understanding of endpoint security, operating systems (Windows/Linux), and network security principles.
• Experience with security compliance frameworks such as NIST, RMF, FISMA, or DISA STIGs.
• Familiarity with SIEM tools (e.g., Splunk, QRadar), and scripting (PowerShell, Python, etc.).
• Excellent written and verbal communication skills.
• Current TS/SCI

Preferred Qualifications:

• Experience with other HBSS tools (e.g., Trellix ePO, , CrowdStrike, etc).
• Experience in threat hunting and incident response using Tanium Threat Response.
• Experience with automation and orchestration tools.

Work Environment & Benefits:

• Competitive salary and benefits package.
• Flexible work schedule depending on mission requirements.
• Opportunities for training, certification, and advancement.
• Collaborative team environment focused on mission success and innovation.

Original Posting:
June 5, 2025
For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:
Pay Range $104,650.00 - $189,175.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.