Endpoint Security Engineer

JOB TITLE- Endpoint Security Engineer
JOB OVERVIEW-  Looking for an engineer who has got experience in multiple endpoint security technologies like Antivirus, EDR, XDR, DLP, Encryption, Sandboxing, and CASB (cloud apps).
JOB Summary-  This role is particularly well-suited to a self-starting, experienced and motivated Security Engineer, who has a proven record of accomplishment in the design, delivery, management, operation and continuous improvement of enterprise-level Endpoint Security platforms or delivering Managed Endpoint Detection Response (EDR) services to customers.

The primary focus will be on the design, implementation, management, operation and continuous improvement of Endpoint Detection Response (EDR) platforms such as Bitdefender or Trellix or Sentinel One or Sophos Endpoint Security and DLP Platforms such as Trellix or Forcepoint to deliver managed security services to our customers.

You will also be required to liaise closely with the customer s key stakeholders, which may include incident response and disaster recovery teams as well as information security.Job Requirements:

1. Overall, 3-5 years relevant experience with at least 2 years in endpoint security engineering
2. Linux/UNIX, Windows, and/or Mac system administration
3. Experience with client authentication and system management solutions for Windows and non-Window clients
4. Proficiency with Microsoft Windows administrative tools, and Unix/Linux command line
5. Hands-on technical expertise with common endpoint security controls such as endpoint antivirus, endpoint response, DLP.
6. Familiarity with other common security infrastructure such as firewalls, intrusion detection/prevention systems, encryption.
7. Excellent written and verbal communication skills
8. Ability to multi-task and manage demands of many projects, issues, and tasks
9. Ability to perform duties with minimal supervision

JOB DESCRIPTION-

1. Hand-on experience in implementing and investing in the alerts of AV, EDR, and CASB.
2. Implement policy as per industry standards and best practices.
3. Write rules, policies, and exclusions for Anti-Virus or Endpoint Security Products (ePO policies, HIPS, Detection Rule Set, etc.)
4. Configure and maintain on-demand and real-time Anti-Malware scan policies.
5. Manual definitions/signature updates during malware outbreak.
6. Administer, operate, and maintain threat environment, including installation, configuration, tuning, and maintenance of threat components, such as AV, anti-spyware, application control, etc.
7. Upgrade and patch security platform products to the latest versions.
8. Manage troubleshoot, and deploy Anti-virus agent, Host Intrusion Prevention, Data Loss Protection, Host IPS and firewall, and Policy Auditor.
9. Scheduled or manual deployment of endpoint products to all managed systems and new machines.
10. Create and monitor all requested daily/weekly reports of systems compliances.
11. Ensure daily updates are pulled and deployed to all nodes successfully.
12. Control external devices and mobile devices through DLP.
13. Ensure all infected and unclean machines are properly quarantined for further analysis.
14. Stay up to date on all approved extensions and end-point software packages.
15. Work closely with the Security Operations team and assist with Intrusion Response activity by defining and deploying appropriate security countermeasures
16. Work closely with key IT partners and stakeholders to ensure security tool deployment balances security best practices, corporate usability, and stability
17. Be responsible for the design, deployment, and initial configuration of security endpoint solutions
18. Evaluate systems with the goal of identifying and remediating existing gaps in vendor solutions and platform technologies
19. Perform product evaluations, recommend, and implement products/services for endpoint security. Validates and tests security architecture and design solutions to produce detailed engineering specifications with recommended vendor technologies
20. Develops, tests and operates enterprise endpoint detection response, and software deployment tools
21. Reviews and recommends the installation, modification, replacement of hardware, or software components and any configuration change(s) that affects security

Additional Requirements –  Relevant Certifications on AV, EDR/XDR, and DLP.

QUALIFICATIONS- Any Graduation