McAfee EPO Architect & Admin

IMP: Before submitting resumes, Please make sure you meet min qualificationC requirements.

Position:

We are a Pasadena based company with Master Services contract with a County Internal Services Department (ISD). Our client ' seeks to obtain services of a McAfee EPO Consultant to implement and configure best practice for Countywide McAfee security solution for cloud, end points and antivirus to all county servers and workstations.

BACKGROUND

ISD s Security Division (SD), Security Operations Section (SOS) provides enterprise security services for the County. The services include security multilayer protection of endpoints using McAfee and Cisco AMP, email security, threat analytics and incident response. The McAfee security has been implemented fully to managed servers and workstations. The goal is to upgrade and maintain all agents and policy and to expend it, migrate and integrate EPOs form non-managed departments workstations and servers. In addition, the operational process requires quick improvements.

MINIMUM QUALIFICATIONS

The Consultant must meet all the following minimum qualifications:

1. Must have all of the following certifications: Certified McAfee Product Security

Specialist ePO.

2. Must have one of the following scripting languages: VB Scripting, Python,

PowerShell.

• 
  
• Five (5) years of experience within the last seven (7) years in a large enterprise
  

environment (5000 employees or more with 500 servers or more) performing

all of the following:

a. Architecture and administration of McAfee products: HIPS, DLPe,

MOVE, TIE, ATD, ATP, ENS, Firewall, Web Control, Application Control,

native drive encryption, drive and removable media encryption.

b. ePO Architecture and Administration

c. Creating and maintaining EDR policies and rules, standard operating

procedures and technical documents.

4. Two (2) years of experience within the last four (4) years performing endpoint

security malware events analysis and remediation.

5. Two (2) years of experience within the last four (4) years performing all of the

following:

a. TCP/IP networking and firewalls.

c. Network security support.

d. VPN connectivity.

e. System administration.

f. Windows and Linux operating systems

6. Three (3) years of experience within the last four (4) years performing all the

following:

a. Planning, designing, implementing, optimizing, and operating malware

and OS vulnerability security solutions.

b. Cloud Security malware protection in AWS and Azure.

c. Patch and configuration management.

7. Two (2) years of experience within the last four (3) years performing all the

following:

a. Upgrading ePO 5.9 to ePO 5.10.

c. Implementing and operating McAfee Rouge Detection System.

d. Protecting data with security protocols - SSL, IPSE, ACL, SMTP, HTTP,

HTTPS, IMAP, POP3 and security policies.

e. Diagnosing and remediating malware

8. Two (2) years of experience within the last three (3) years performing all of the

following:

a. Developing and applying McAfee policy and exclusions.

b. Tuning up the policies to protect from newly identify threats.

DESCRIPTION OF WORK/DUTIES

The Consultant shall perform all of the duties listed:

• 
  
• Administrate McAfee EPO and ensure compliance and coverage on a daily
  

basis

• 
  
• Administer McAfee endpoint security infrastructure and monitor endpoints for
  

threats

• 
  
• Perform vulnerability assessments of information systems including regular
  

audits

• 
  
• Manage and support all McAfee products such as native encryption, FRP,
  

HIPS, DLP, Move, TIE, ATD, ATP, ENS, Firewall, Web Control, Application

Control and VSE engines

• 
  
• Assist with patch management of all systems
  
• Recommend alternative solutions when appropriate
  
• Test new releases of McAfee modules, agents and data prior to deploying it to
  

the County

• 
  
• Ensure that the latest version of McAfee security solution is running on servers
  

and workstation

• 
  
• Respond to user support requests, diagnose and provide solutions to technical
  

issues

• 
  
• Research issues while maintaining communication with end-users
  
• Solve problems accurately, efficiently and find a way to resolve obstacles
  
• Collate with other teams to resolve security gaps and discrepancy reported by
  

ePO.

• 
  
• Troubleshoot incompatibilities with OS and applications.
  
• Define and document exclusion required due to the specific system
  

incompatibility

• 
  
• Resolve all tickets within the SLA timeframe
  
• Develop playbooks to optimize the use of McAfee security products
  
• Create and maintain ePO configuration following best practice as advised by
  

vendor, McAfee.

• 
  
• Write custom scripts to automate processes as needed.
  
• Collaborate with project team members to meet timelines and goals
  
• Contribute to project documentation and diagrams including quality assurance
  

and ticket and bug management.

• 
  
• Perform knowledge transfer to coworkers within the section.
  
• Deliver presentations and provide progress updates to Managers and Staff.
  
• Provide as needed after hours support at the discretion of the SD-SOS Section
  

Manager.

• 
  
• Prioritize and work without direct supervision
  
• Create ad-hoc reports as required
  
• Take lead ePO/McAfee architect role for optimizing the existing design,
  

policies and operation

• 
  
• Support and perform migration of ePO for independent departments
  

environment into the ISD environment

• 
  
• Manage complex set up and architecture, recommends and implement
  

improvements for McAfee solution deployment

• 
  
• Execute and support upgrade of ePO 5.9.x to ePO 5.10.x
  
• Install and upgrade agents on servers, workstations and virtual desktops
  
• Implement, document and support Rouge detection System
  
• Architect, deploy and support McAfee products in AWS, Azure and Google
  

cloud environments

• 
  
• Build McAfee dashboard for management visibility and health detection
  
• Enhance the design as needed to support new functionality and resolve issues
  
• Troubleshoot ePO server or McAfee client issues
  
• Define and implant policies and tune up the polices to protect from newly
  

identified threats and not disrupt the server/workstations operations

• 
  
• Facilitate and manage the continued deployment lifecycle of McAfee Security
  

suite across the enterprise

• 
  
• Develop operations procedures and train staff on operational practices
  

Resumes submitted must contain clear evidence that above requirements are met. Candidates will be expected to provide names, addresses, and telephone numbers of persons who can substantiate any/all experience and job performance. References will be verified.