Job Description:
? Solid understanding of threat detection, MITRE ATT&CK framework, and endpoint
forensics.
? Strong knowledge of Windows, macOS, and Linux endpoint security
? Manage and optimize EDR solutions such as CrowdStrike, SentinelOne, Microsoft
Defender for Endpoint, etc. SentinelOne preferred
? Investigate and respond to endpoint security incidents using threat intelligence and
behavioral analytics.
? Develop and tune EDR rules, detection signatures, and automated response
playbooks.
? Collaborate with SOC teams, threat hunters, and IT teams to contain and remediate
incidents.
? Conduct root cause analysis and document security events and findings.
? Provide recommendations to improve endpoint protection policies and procedures.
? Maintain dashboards, reports, and documentation for ongoing monitoring and
compliance.
? Assist in security assessments and audits related to endpoint security posture.
? Stay up-to-date with the latest threat landscape and EDR advancements.
Mandatory Skills:
? Endpoint detection and response (EDR) - SentinelOne CrowdstrikeMicrosoft
? Virtual Desktop technology (VDI) - Citrix vdi, Microsoft Wvd
? Networking (Cisco, Juniper) – Good experience
? Security Perimeter (Checkpoint, Fortigate, PaloAlto, Proxy)- good experience
? Security endpoint (AV,EDR,DLP)—Basic experience
? MDM Solution (Jamf,Intune,other MDM) – Basic experience
