Data Protection Engineer
Role details
Job location
Tech stack
Job description
management of the Trellix (formerly McAfee) Data Loss Prevention (DLP) suite. You will be responsible for configuring and tuning the Trellix ePolicy Orchestrator (ePO) to enforce rigorous device control and data protection policies on workstations operating in disconnected and air-gapped environments. Your work will directly prevent the unauthorized exfiltration of classified intelligence via USB drives, printing, and clipboard transfer, ensuring that the Command's most sensitive networks remain secure against insider threats and accidental data loss. Responsibilities * Trellix DLP Architecture: Lead the design and configuration of Trellix DLP Endpoint policies within the ePolicy Orchestrator (ePO) on SIPR and Top-Secret networks to monitor and block unauthorized data transfer vectors (USB, Web, Print, Clipboard). * Policy & Rule Tuning: Create and refine complex data classification rules and regex patterns to identify specific USSOCOM sensitive data types, actively tuning policies to, * Senior Level: 10+ years of related technical experience. * Trellix/McAfee Expertise: Extensive (5+ years) hands-on experience architecting and administering Trellix (McAfee) ePolicy Orchestrator (ePO) and Data Loss Prevention (DLP) Endpoint products. * Device Control: Deep understanding of Device Control policies for managing removable storage, peripheral devices, and printing in a secure environment. * Regex & Classification: Proficiency in creating custom data identifiers using Regular Expressions (Regex) and dictionaries to detect sensitive information. * Troubleshooting: Proven ability to troubleshoot complex agent-based issues on Windows endpoints, including conflict resolution with other security software. Preferred Experience & Skills ("Nice-to-Haves") * Experience working in Air-Gapped or isolated network environments (e.g., JWICS, SAPs). * Knowledge of Trellix Endpoint Security (ENS) and Threat Intelligence Exchange (TIE/DXL). * Familiarity with
Requirements
reduce false positives and transition from "Audit" to "Block" mode. * Air-Gapped Operations: Manage the unique lifecycle of the ePO environment on the Top-Secret network, including the manual "sneaker-net" transfer of policy updates, agent patches, and threat intelligence definitions. * Integration: Configure ICAP integration between Trellix and other security components (such as Kiteworks or Web Proxies) to extend DLP inspection to network traffic and file transfers. * Incident Triage: Serve as the Tier 3 escalation point for DLP incidents, analyzing blocked actions and working with the SOC/SIEM team to ensure alerts are properly ingested into Splunk. Location: Onsite in Tampa, FL Position Duration: The duration of this role is 18 months from project commencement, with the possibility of extension (Project expected to commence in January 2026). Qualifications * Senior Level: Master of Science (MS) degree in Computer Science, Cybersecurity, Information Technology, or a related field., Kiteworks or Boldon James for data classification integration. * Experience with Splunk for log analysis and dashboarding. Certifications: * Required: CompTIA Security+ CE (or higher) to meet DoD 8570 IAT Level II requirements. * Preferred: Trellix Certified Specialist - Data Loss Prevention (DLP) or equivalent McAfee certification. Clearance: * Active Top-Secret clearance with SCI eligibility. Benefits The Company We believe in generating success collaboratively, enabling long-term mission success, and building trust for the next challenge. With you as our partner, let's solve challenges, think innovatively, and maximize impact. As a valued member of our team, you have the unique opportunity to work in a diverse range of technology and business career paths, all while supporting our nation and delivering innovative technology solutions. We are a close community of experts that pride ourselves on creating an environment defined by teamwork, dedication, and
Benefits & conditions
excellence. We hold three ISO certifications (27001:2013, 20000-1:2011, 9001:2015), two CMMI ML 3 ratings (DEV and SVC) and CMMC Level 2 Certification. Industry Recognition Growth | Inc 5000's Fastest Growing Private Companies, DC Metro List Fastest Growing; Washington Business Journal: Fastest Growing Companies, Top Performing Small Technology Companies in Greater D.C. Culture | Northern Virginia Technology Council Tech 100 Honoree; Virginia Best Place to Work; Washington Business Journal: Best Places to Work, Corporate Diversity Index Winner - Mid-Size Companies, Companies Owned by People of Color; Department of Labor's HireVets for our work helping veterans transition; SECAF Award of Excellence finalist; Victory Military Friendly Brand; Virginia Values Veterans (V3); Cystic Fibrosis Foundation Corporate Breath Award Benefits We offer competitive benefits package including paid time off, healthcare benefits, supplemental benefits, 401k including an employer match, discount perks, rewards, and more. We invest in our employees - Every employee is eligible for education reimbursement for certifications, degrees, or professional development. Reimbursement amounts may fluctuate due to IRS limitations. We want you to grow as an expert and a leader and offer flexibility for you to take a course, complete a certification, or other professional growth and networking. We are committed to supporting your curiosity and sustaining a culture that prioritizes commitment to continuous professional development. We work hard; we play hard. Kentro is committed to incorporating fun into every day. We dedicate funds for activities - virtual and in-person - e.g., we host happy hours, holiday events, fitness & wellness events, and annual celebrations. In alignment with our commitment to our communities, we also host and attend charity galas/events. We believe in appreciating your commitment and building a positive workspace for
