End point Security

Endpoint Security Engineer

Roles and Responsibilities:

• Endpoint Protection Management:

  Design, implement, configure, and manage endpoint security solutions (e.g.,

  Endpoint Detection and Response - EDR

  ,

  Antivirus/Anti-malware

  ,

  Host Intrusion Prevention Systems - HIPS

  ,

  Data Loss Prevention - DLP

  ).

• Security Policy Enforcement:

  Develop and enforce endpoint security policies, baselines, and configurations to ensure compliance with organizational standards and industry best practices.

• Threat Detection & Response:

  Monitor endpoint security alerts, investigate security incidents, perform malware analysis, and lead incident response activities related to endpoint compromise.

• Vulnerability Management:

  Conduct vulnerability assessments on endpoints, identify security gaps, and work with IT teams to implement patching and remediation strategies.

• Data Loss Prevention (DLP):

  Configure and manage DLP policies on endpoints to prevent unauthorized data exfiltration and ensure sensitive information protection.

• Endpoint Hardening:

  Implement endpoint hardening best practices, including application whitelisting, device control, and encryption.

• Analysis & Reporting:

  Analyze endpoint security logs and data to identify emerging threats, provide insights into security posture, and generate regular reports for management.

• Troubleshooting:

  Perform in-depth troubleshooting and resolution for complex endpoint security issues, including agent malfunctions, false positives, and policy conflicts.

• Integration:

  Integrate endpoint security solutions with other security tools (e.g., SIEM, threat intelligence platforms) to enhance overall security visibility and automation.

• Collaboration:

  Work closely with IT operations, network security, incident response, and application teams to ensure comprehensive endpoint protection.

Preferred Candidate Profile:

• Endpoint Security Expertise:

  Strong hands-on experience with leading

  Endpoint Protection Platforms (EPP)

  and

  Endpoint Detection and Response (EDR)

  solutions (e.g., CrowdStrike, SentinelOne, Microsoft Defender ATP, Symantec Endpoint Protection).

• Threat Landscape Knowledge:

  Solid understanding of common cyber attack techniques, malware types, and endpoint vulnerabilities.

• Operating Systems:

  Proficient in securing various operating systems (Windows, macOS, Linux) at the endpoint level.

• Security Concepts:

  Strong knowledge of fundamental security concepts such as least privilege, network segmentation, firewalls, and encryption.

• Problem-Solving:

  Excellent analytical and problem-solving skills with a proactive approach to identifying and mitigating endpoint security risks.

• Scripting (Plus):

  Familiarity with scripting languages (e.g., PowerShell, Python) for automation of endpoint security tasks is a plus.

• Communication:

  Strong verbal and written communication skills to articulate technical concepts and security findings effectively.

• Education:

  Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related technical field. Relevant security certifications (e.g., CompTIA Security+, CySA+, GIAC certifications) are highly desirable.