Endpoint Security Engineer

General Summary of the Job:

This role is responsible for assisting with planning, implementation and management of new normal initiatives for endpoint security including Microsoft Defender for Endpoint (MDE), Endpoint Privilege Management (EPM). Assist with general Antivirus (AV) infrastructure management, and AV client support. Ensure ongoing reliability and performance by monitoring the operating environments, responding to incidents and problems, and planning for growth.

• Administers, supports, installs, and maintains enterprise endpoint protection solutions, including Microsoft Defender for Endpoint (MDE), Endpoint security, DLP, EDR.
• Assist in the operationalization of endpoint privilege management deployment including: agent deployment, policy management and tuning, troubleshooting and documentation.
• Consistently assess the threat landscape and adapt quickly to protect the business from risk.
• Potentially acts as advisor to Associate level IT Infrastructure Engineers, etc.
• Train team members and share knowledge to expand the team’s capabilities
• On-call availability as needed.

Skills and Abilities Required:

• Knowledge of installation, configuration, troubleshooting, repair, design and planning of Information Security systems.
• Knowledge of system administration and best practices for Linux and Windows Server systems
• Must have strong problem-solving and analytical skills and demonstrate poise and ability to act calmly and competently in high-pressure, high-stress situations
• Understanding of TCP/IP, LDAP, DNS and other networking protocols

• Excellent interpersonal communications from both business and technical perspectives, written and oral

Desirable

• Experience with Microsoft Cloud Security Technologies such as Azure Sentinel, Azure Defender, MDE, and Azure Log Analytics
• Strong knowledge of Zero-Trust solutions
• Experience with Windows programming and scripting languages (PowerShell, VB scripting, Python, etc.)
• Knowledge of Group Policy Objects (GPOs), Computer hardware settings and best practices
• Windows 10 & Office 365 technical troubleshooting
• Understanding of virtualization technologies such as VMware, etc.

• Experience working in software development environment

Education and Experience Requirement:

• Minimum Associate degree with preferable emphasis in Computer Science, Computer Information Systems, Computer Engineering
• 5+ years experience managing endpoint protection solutions like AV, EDR, and DLP products.
• 3+ years managing Microsoft Defender for Endpoint
• 2+ years managing EPM solution (CyberArk, Thycotic, or similar)
• 5-8 years endpoint and desktop applications support in large production environments
• Proven operating, troubleshooting, installing, and configuring endpoint security solutions (e.g. Microsoft Defender, ATP, Antivirus, Application Whitelisting, Windows Firewall, Forensic Analysis Tools, Advanced Malware Solutions)
• Experience with AD, Azure AD, and Microsoft services (NPS, RRAS)
• Experience with other Microsoft M365 Services is a plus.

Working Conditions/Physical Requirements:

• Normal office environment

• Ability to travel domestic and global ~10%