This site uses cookies. To find out more, see our Cookies Policy

HBSS Engineer, Senior in San Diego, CA at Booz Allen Hamilton Inc.

Date Posted: 4/19/2019

Job Snapshot

Job Description

Job Number: R0037930

HBSS Engineer, Senior

Key Role:

Work with a team in a lab environment to develop and tune Host-Based Security System (HBSS) policies for assets during integration test events. Install, configure, and maintain HBSS servers and dependent systems. Perform verification and troubleshooting across all HBSS modules. Install, configure, and maintain the Assured Compliance Assessment Solution (ACAS) Security Center (SC) and ACAS scanners. Perform Tier IV troubleshooting, develop policy analysis, and perform IPS signature review for Application Providers (AP) and DoD Program of Records (PoR). Install, configure, and maintain multiple HBSS servers and dependent systems. Develop XML policies for HIPS Firewalls, HIPS Application Whitelisting, including McAfee Solidcore and a national agency’s AWL, HIPS exclusions, DLP exclusions, and VSE exclusions. This position is located in San Diego, CA.

Basic Qualifications:

-5+ years of experience with network or systems engineering or system administration

-5+ years of experience with HBSS

-Experience with HBSS ePO server administration and maintenance

-Experience with standard HBSS modules, including McAfee Agent (MA), Host Intrusion Prevention System (HIPS), Data Loss Prevention (DLP), Policy Auditor (PA), VirusScan Enterprise (VSE), Rogue System Detection (RSD), Asset Baseline Monitor (ABM), and Asset Configuration Compliance Module (ACCM)

-Experience with analyzing policies for HIPS firewall, HIPS application whitelisting, HIPS intrusion prevention exclusions, DLP exclusions, and VSE exclusions

-Active Secret clearance

-HS diploma or GED required

-IA Workforce 8570 Certification, including Security+ or equivalent

Additional Qualifications:

-Experience with HBSS HIPS signature review and verification of signature and exceptions
-Experience with ACAS SC and ACAS Nessus scanner administration and maintenance

-Experience with troubleshooting ACAS SC to ACAS scanner synchronization

-Experience with system administration

-Knowledge of configuring primary operating systems, including Microsoft Windows, UNIX, or Linux

-Knowledge of Navy shipboard networks

-Knowledge of using and applying vulnerability assessment tools, including Nessus, Security Content Automation Protocol (SCAP), Secure Technical Implementation Guides (STIGs), checklists, and Security Requirements Guides (SRG)

-BA or BS degree
-Completion of a DoD 201 HBSS Administrator Course

-Completion of a DoD 301 HBSS Advanced Administrator Course

-Completion of a DoD 501 HBSS Analyst Course


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.


Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.