BigFix Engineer, Associate

Location: Rockville, MD

Required Clearance: Public Trust

Onsite: Hybrid Work (Minimum 1 Day Onsite - minimum)

Job Title:  BigFix Engineer, Associate

Job Overview: The Big Fix Engineer, Associate responsible for operational cybersecurity support in a federal IT environment, with a primary emphasis on enterprise endpoint patching and compliance using IBM BigFix. The specialist will manage and execute security patching, endpoint inventory validation, and compliance reporting across laptops and desktops, ensuring systems meet federal security and continuous monitoring requirements.

This role performs technical security tasks independently or under supervision of System Engineers, the Lead Computer Security System Specialist, the Information Systems Security Officer (ISSO), and/or the Contracting Officer’s Representative (COR). The position supports compliance with federal mandates including FISMA, and aligns to NIST, HHS, and NIH security policies and directives.

Key Responsibilities

BigFix responsibilities include (but are not limited to):

• Lead and execute monthly enterprise patch deployments using IBM BigFix for:
  • Operating Systems
  • Microsoft Office applications
  • Microsoft security updates and supporting Microsoft products
• Maintain and validate BigFix endpoint coverage:
  • Ensure BigFix agents are installed, properly configured, and consistently reporting
  • Perform agent troubleshooting (connectivity, relay issues, policy failures, outdated agents, etc.)
• Support mandatory twice-yearly endpoint inventory verification, ensuring:
  • All laptops/desktops are accounted for
  • Security patches are up-to-date and verified
  • BigFix compliance data supports audit and reporting requirements
  • Reports are produced confirming endpoint validation and remediation actions
• Create and deliver BigFix compliance reports and metrics, including:
  • Patch compliance baselines
  • Deployment success/failure reporting
  • Exception handling and remediation tracking
  • Endpoint verification summaries for stakeholders
• Research, test, and recommend enhancements to:
  • Patch deployment strategies
  • Patch monitoring approaches
  • Anti-virus and endpoint security enforcement
• Coordinate with security, desktop support, and system owners to remediate patch failures, non-compliance, and high severity vulnerabilities.

Security Desktop Support & Endpoint Security Operations

• Provide Security Desktop Support to ensure endpoint hardening, patch compliance, and continuous monitoring requirements are maintained.
• Assist in remediation of critical endpoint security events (high severity vulnerabilities, malware outbreaks, compliance failures).
• Provide assistance to the NIH Incident Response Team (IRT) and internal security teams in handling endpoint incidents and remediation activities, including containment and recovery support.
• Support security monitoring and enforcement of endpoint security baselines and authorized tools.

Vulnerability Management & Continuous Monitoring

• Perform and analyze system/application vulnerability scans using enterprise/federal tools.
• Analyze results from vulnerability scans and external penetration tests; support remediation and validation.
• Track vulnerability remediation efforts and provide reports internally and to federal stakeholders.
• Support continuous monitoring activities and reporting as mandated by NIH.

Malware Defense, Logging & Security Monitoring

• Manage anti-virus/malware detection, analysis, and remediation, including support for authorized AV consoles.
• Support log consolidation and analysis for endpoint and enterprise systems.
• Develop and enforce automated security processes supporting monitoring and compliance.

Security Incident Response & Forensics

• Provide comprehensive security incident support including notification, response, remediation, forensic support, reporting, and coordination with external stakeholders.
• Support investigations requested by NIH/HHS or other government agencies.

Security Assessment & Authorization (SA&A) Support

Under direction of the Federal Lead/ISSO, support documentation and compliance activities to ensure readiness for audits and re-authorization.

Key activities include:

• Maintain security artifacts and support SA&A activities (SSPs, POA&Ms, implementation evidence).
• Maintain tracking matrices and support re-authorization workflows.
• Support annual/periodic contingency planning tests and tabletop exercises and provide feedback for improvement.
• Support NIST 800-53 annual assessment activities and assist system owners with documentation completeness.
• Support audit response activities and security-related data calls.

Requirements

• Bachelor’s Degree (or equivalent) and 3 years of relevant experience in an IT operational security role.

Required BigFix Experience

• Demonstrated hands-on experience administering or operating IBM BigFix in an enterprise environment, including:
  • Patch deployment and scheduling
  • Agent troubleshooting
  • Patch compliance reporting
  • Baseline creation/maintenance (as applicable)
  • Endpoint inventory validation and compliance assurance

Certifications:

Must possess one (1) or more of the following:

• Enterasys Certified Expert (ECE) – Network Security
• Enterasys Certified Expert (ECE) – Security Information Management
• IBM Certified Associate – Rational AppScan Source Edition
• Security+ Certified Systems Engineer
• GIAC Security Essentials (GSEC)
• GIAC Certified Incident Handler (GCIH)
• EnCase Digital Forensics Certification
• (ISC)² Certified Information Systems Security Professional (CISSP)
• (ISC)² Systems Security Certified Practitioner (SSCP)
• GIAC Security Expert
• Security Certified Program (SCP) – Security Certified Network Architect
• SCP – Security Certified Network Professional

Preferred Qualifications

• Strong experience supporting endpoint security operations in a federal environment (FISMA/NIST 800-53).
• Experience with JAMF for macOS patching and management.
• Experience creating compliance dashboards and reports for patching, inventory verification, and vulnerability remediation.
• Familiarity with:
  • NIH/HHS security compliance reporting expectations
  • NSAT or similar security governance tools
  • Vulnerability scanning tools and remediation workflows
  • Incident response coordination with centralized IRT teams

Compensation and Benefits  

The projected compensation range for this position is $90,000 to $120,000 per year benchmarked in the Washington, D.C. metropolitan area.  Salary at LCG is determined by various factors, including but not limited to role, location, the combination of education/training, knowledge, skills, competencies, certifications, and work experience.  

LCG offers a competitive, comprehensive benefits package which includes health insurance options (medical, dental, vision), life and disability insurance, retirement plan contributions, as well as paid leave, federal holidays, professional development, and lifestyle benefits.  

Devoted to Fair and Inclusive Practices  

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law.  

If you are interested in applying for employment with LCG and need special assistance or an accommodation to apply for a posted position, contact our Human Resources department by email at [email protected].  

Securing Your Data  

Beware of fraudulent job offers using LCG's name. LCG will never request payment-related details or advancement of money during the application process. Legitimate communication will only come from lcginc.com or [email protected] emails, not free commercial services like Gmail or WhatsApp. If you receive suspicious emails asking for payment or personal information, contact us immediately at [email protected].  

If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.