Capgemini
***** Must be a US Citizen Due to Client Constraints *****
Your Responsibilities:
Attend client calls and provide updates for the respective tools
Support L2 for troubleshooting issues
Manage end-to-end Endpoint Security Solutions including installation, configuration, management, administration, and troubleshooting
Hands-on experience in the security incident response lifecycle and its phases
Provide service improvement suggestions to management
Fine-tune rules and raise cases with vendors for any issues
Suggest new integrations to clients and their benefits
Support Endpoint Detection and Response (EDR) applications to ensure cybersecurity service availability for all endpoints (servers, desktops, laptops)
Monitor encryption, EDR, and AV logs (Bitlocker, Symantec, Sentinel One)
Monitor dashboard for compliance, threats, and troubleshoot issues
Check if any incidents are missed by L1 and follow up for the cause
Maintain SOP for new events
Whitelisting/blacklisting of IPs
Review phishing templates sent by L1 and perform 4-Eye Check
Troubleshoot Proofpoint issues for users and escalate to L3 if unresolved
Fine-tune policies in Cisco ESA and Fireeye
Manage the team and attend client calls
Monitor EDR, email gateway, and AV logs
Monitor dashboard for compliance, threats, and troubleshoot issues
Your Experience:
Strong knowledge and understanding of the Microsoft E5 suite
Hands-on experience with Defender ATP, Azure ATP, O365 Security
Experience in creating and deploying antimalware policies for Endpoint Protection in System Center Configuration Manager
Risk/log analysis and understanding of Indicators of Compromise (IOC)
Basic knowledge of Defender ATP automation and scripting
Knowledge of grouping/tagging, ATP vulnerability assessment
Experience with attack simulators, anti-phishing policies, reporting, and threat analytics
Configuring automation, investigation, and response
Malware and spyware detection and remediation
Rootkit detection and remediation
Critical vulnerability assessment and automatic definition and engine updates
Working knowledge of client firewall tools, managing auto location, firewall policies, HI checks, and intrusion detection
Knowledge of DLP, O365, Azure, Intune, encryption
Experience with Microsoft Defender for Endpoint (MDE) including configuration, management, and troubleshooting
Experience with Microsoft Defender for Office 365 (MDO) including implementation, policy fine-tuning, and threat management
Email Security:
Familiarity with email protection from threats including phishing, BEC, imposter, and others
Handling email security and related incidents
Knowledge of MX records, DNS, Active Directory, SSO, SAML
Implementation of email security standards such as SPF, DKIM, and DMARC
Implementation of security standards such as SIEM
Enhancing security of email infrastructure by implementing controls to manage and mitigate risks
Analysis and implementation of perimeter email security and email routing solutions
Building Standard Operating Processes for operations of the platform
Managing knowledge transfer of operations to L2 teams
Ensuring compliance with Group Security policies
Collaborating with M365, Cyber Security leads, Cyber Defense, Group Security teams
Soft Skills:
Strong team performance and ability to work in rotational shifts
People management skills for delivering complete service delivery for EP Security Services
Experience in presenting Microsoft 365 solutions to all levels of decision-makers
Knowledge of ITIL processes (Incident, Change, Problem, Major Incident Management)
Mentoring team members in day-to-day operations and handling escalations
Providing business improvement solutions to clients and execution skills
Life at Capgemini:
Capgemini supports all aspects of your well-being throughout the changing stages of your life and career. For eligible employees, we offer:
Flexible work
Healthcare including dental, vision, mental health, and well-being programs
Financial well-being programs such as 401(k) and Employee Share Ownership Plan
Paid time off and paid holidays
Paid parental leave
Family building benefits like adoption assistance, surrogacy, and cryopreservation
Social well-being benefits like subsidized back-up child/elder care and tutoring
Mentoring, coaching and learning programs
Employee Resource Groups
Disaster Relief
About Capgemini:
Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to engineering, all fueled by its market leading capabilities in AI, cloud and data, combined with its deep industry expertise and partner ecosystem. The Group reported 2023 global revenues of €22.5 billion.
Get the future you want | www.capgemini.com (http://www.capgemini.com/#_blank)
Disclaimer:
Capgemini is an Equal Opportunity Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, national origin, gender identity/expression, age, religion, disability, sexual orientation, genetics, veteran status, marital status or any other characteristic protected by law.
This is a general description of the Duties, Responsibilities and Qualifications required for this position. Physical, mental, sensory or environmental demands may be referenced in an attempt to communicate the manner in which this position traditionally is performed. Whenever necessary to provide individuals with disabilities an equal employment opportunity, Capgemini will consider reasonable accommodations that might involve varying job requirements and/or changing the way this job is performed, provided that such accommodations do not pose an undue hardship.
Capgemini is committed to providing reasonable accommodations during our recruitment process. If you need assistance or accommodation, please reach out to your recruiting contact.
Click the following link for more information on your rights as an Applicant http://www.capgemini.com/resources/equal-employment-opportunity-is-the-law
Job:
Technology Strategy
Organization:
CIS US MS
Title:
Endpoint Security Analyst
Location:
IL-Chicago
Requisition ID:
080780
Your Responsibilities:
Attend client calls and provide updates for the respective tools
Support L2 for troubleshooting issues
Manage end-to-end Endpoint Security Solutions including installation, configuration, management, administration, and troubleshooting
Hands-on experience in the security incident response lifecycle and its phases
Provide service improvement suggestions to management
Fine-tune rules and raise cases with vendors for any issues
Suggest new integrations to clients and their benefits
Support Endpoint Detection and Response (EDR) applications to ensure cybersecurity service availability for all endpoints (servers, desktops, laptops)
Monitor encryption, EDR, and AV logs (Bitlocker, Symantec, Sentinel One)
Monitor dashboard for compliance, threats, and troubleshoot issues
Check if any incidents are missed by L1 and follow up for the cause
Maintain SOP for new events
Whitelisting/blacklisting of IPs
Review phishing templates sent by L1 and perform 4-Eye Check
Troubleshoot Proofpoint issues for users and escalate to L3 if unresolved
Fine-tune policies in Cisco ESA and Fireeye
Manage the team and attend client calls
Monitor EDR, email gateway, and AV logs
Monitor dashboard for compliance, threats, and troubleshoot issues
Your Experience:
Strong knowledge and understanding of the Microsoft E5 suite
Hands-on experience with Defender ATP, Azure ATP, O365 Security
Experience in creating and deploying antimalware policies for Endpoint Protection in System Center Configuration Manager
Risk/log analysis and understanding of Indicators of Compromise (IOC)
Basic knowledge of Defender ATP automation and scripting
Knowledge of grouping/tagging, ATP vulnerability assessment
Experience with attack simulators, anti-phishing policies, reporting, and threat analytics
Configuring automation, investigation, and response
Malware and spyware detection and remediation
Rootkit detection and remediation
Critical vulnerability assessment and automatic definition and engine updates
Working knowledge of client firewall tools, managing auto location, firewall policies, HI checks, and intrusion detection
Knowledge of DLP, O365, Azure, Intune, encryption
Experience with Microsoft Defender for Endpoint (MDE) including configuration, management, and troubleshooting
Experience with Microsoft Defender for Office 365 (MDO) including implementation, policy fine-tuning, and threat management
Email Security:
Familiarity with email protection from threats including phishing, BEC, imposter, and others
Handling email security and related incidents
Knowledge of MX records, DNS, Active Directory, SSO, SAML
Implementation of email security standards such as SPF, DKIM, and DMARC
Implementation of security standards such as SIEM
Enhancing security of email infrastructure by implementing controls to manage and mitigate risks
Analysis and implementation of perimeter email security and email routing solutions
Building Standard Operating Processes for operations of the platform
Managing knowledge transfer of operations to L2 teams
Ensuring compliance with Group Security policies
Collaborating with M365, Cyber Security leads, Cyber Defense, Group Security teams
Soft Skills:
Strong team performance and ability to work in rotational shifts
People management skills for delivering complete service delivery for EP Security Services
Experience in presenting Microsoft 365 solutions to all levels of decision-makers
Knowledge of ITIL processes (Incident, Change, Problem, Major Incident Management)
Mentoring team members in day-to-day operations and handling escalations
Providing business improvement solutions to clients and execution skills
Life at Capgemini:
Capgemini supports all aspects of your well-being throughout the changing stages of your life and career. For eligible employees, we offer:
Flexible work
Healthcare including dental, vision, mental health, and well-being programs
Financial well-being programs such as 401(k) and Employee Share Ownership Plan
Paid time off and paid holidays
Paid parental leave
Family building benefits like adoption assistance, surrogacy, and cryopreservation
Social well-being benefits like subsidized back-up child/elder care and tutoring
Mentoring, coaching and learning programs
Employee Resource Groups
Disaster Relief
About Capgemini:
Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to engineering, all fueled by its market leading capabilities in AI, cloud and data, combined with its deep industry expertise and partner ecosystem. The Group reported 2023 global revenues of €22.5 billion.
Get the future you want | www.capgemini.com (http://www.capgemini.com/#_blank)
Disclaimer:
Capgemini is an Equal Opportunity Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, national origin, gender identity/expression, age, religion, disability, sexual orientation, genetics, veteran status, marital status or any other characteristic protected by law.
This is a general description of the Duties, Responsibilities and Qualifications required for this position. Physical, mental, sensory or environmental demands may be referenced in an attempt to communicate the manner in which this position traditionally is performed. Whenever necessary to provide individuals with disabilities an equal employment opportunity, Capgemini will consider reasonable accommodations that might involve varying job requirements and/or changing the way this job is performed, provided that such accommodations do not pose an undue hardship.
Capgemini is committed to providing reasonable accommodations during our recruitment process. If you need assistance or accommodation, please reach out to your recruiting contact.
Click the following link for more information on your rights as an Applicant http://www.capgemini.com/resources/equal-employment-opportunity-is-the-law
Job:
Technology Strategy
Organization:
CIS US MS
Title:
Endpoint Security Analyst
Location:
IL-Chicago
Requisition ID:
080780