AntiVirus Engineer - Senior

AntiVirus Engineer - Senior Location: 10160 Washington DC The AntiVirus Engineer-Senior supports the SEC ISS contract by leading enterprise anti-virus operations that protect SEC workstations and servers across the agency environment. This role is responsible for centralized policy administration, secure deployment and configuration, Microsoft Defender security intelligence and engine currency, and scheduled scanning to maintain consistent endpoint protection. Primary Responsibilities Enterprise Anti-Virus Operations - Manage and lead day-to-day deployment and configuration of enterprise anti-virus software across required SEC workstations and servers. - Administer centrally managed anti-virus policies, exceptions, and protection settings through enterprise management servers/consoles. - Manage Microsoft Defender security intelligence and engine updates to maintain current protection coverage across the endpoint fleet. - Execute and validate scheduled anti-virus scans, update tasks, and protection health checks. Centralized Management and Endpoint Integration - Operate and optimize centralized anti-virus management platforms (e.g., enterprise policy orchestration tools) to enforce standardized controls. - Operate and optimize centralized anti-virus management platforms (e.g., Microsoft Defender management consoles, Intune, and related endpoint security tools) to enforce standardized controls. - Support pre-production testing and controlled rollout of anti-virus policy or agent changes to reduce operational risk. - Maintain and update SOPs, runbooks, and configuration baselines for endpoint protection operations. Incident Response and Escalation Support - Troubleshoot complex anti-virus and malware-related issues requiring senior-level escalation support and subject matter expertise. - Perform incident triage, technical analysis, and root-cause identification for endpoint protection failures or infections. - Coordinate with SEC support teams and stakeholders to restore services quickly and prevent repeat incidents. - Document actions, status, and resolution details in approved ticket/workflow systems in alignment with ISS support processes. Security Compliance, Reporting, and Continuous Improvement - Support vulnerability identification, tracking, and remediation activities related to endpoint protection controls and findings. - Monitor anti-virus operational metrics (coverage, update compliance, scan status, incident trends) and provide regular reporting. - Ensure endpoint protection operations align with SEC security policies, change control requirements, and audit readiness expectations. - Contribute to zero-trust and continuous-improvement efforts by recommending automation and control enhancements for endpoint security operations. Required Qualifications Citizenship/Work Authorization: Must meet contract requirements. Clearance: Ability to obtain and maintain SEC Public Trust (or higher if required). Education: Bachelor's degree in a relevant field (e.g., Information Technology, Computer Science, Engineering). Experience: - Minimum 8 years of experience, including 7-10 years of related experience managing and leading support of enterprise anti-virus software solutions. - Demonstrated experience using centralized anti-virus management platforms (e.g., enterprise policy orchestration tools). - Experience deploying, configuring, and sustaining anti-virus controls for both workstation and server operating environments. Technical Skills: - Enterprise anti-virus administration for workstation and server endpoints - Centralized policy/orchestration management consoles - Microsoft Defender security intelligence and engine update lifecycle management - Malware scanning operations, scheduling, and health validation - Escalated incident troubleshooting and root-cause analysis Preferred Qualifications - Prior experience supporting a federal civilian agency IT contract with FISMA-driven security and audit requirements. - Hands-on experience integrating endpoint protection operations with Microsoft Intune or comparable endpoint management platforms. - Experience implementing endpoint controls aligned to zero-trust security objectives. - Experience with ServiceNow-based ticketing, escalation workflows, and SLA performance reporting. - Experience managing endpoint POA&M remediation and response to Known Exploited Vulnerabilities (KEV) timelines. - CompTIA Security+ - Microsoft Certified: Endpoint Administrator Associate (MD-102) - Microsoft Certified: Security Operations Analyst Associate (SC-200) WORK ENVIRONMENT / OTHER Operational Support: May require participation in on-call or surge support activities depending on operational needs. Location: Washington, DC Metropolitan Area (on-site at SEC facilities with approved telework as directed by contract/task order). Travel: As required per contract direction. If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo — because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 — and moving faster than anyone else dares. Original Posting: June 3, 2026 For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. Pay Range: Pay Range $107,900.00 - $195,050.00 The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.