EY
Cyber SDC- Endpoint Security Lead Engineer - Senior - Consulting - Location Open
EY, Houston, Texas, United States, 77246
Overview
Cyber SDC- Endpoint Security Lead Engineer - Senior - Consulting - Location Open Location: Anywhere in Country EY is shaping your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help build a better working world. We are looking for a dedicated Endpoint Security Operations Engineer to join our cybersecurity team. The ideal candidate will be responsible for the management, monitoring, and optimization of endpoint security solutions, including CrowdStrike, Microsoft Defender for Endpoint, Microsoft Defender for Mobile, and CyberArk Endpoint Privilege Manager (EPM). This role requires a strong understanding of endpoint security principles, threat detection, and incident response, as well as the ability to work collaboratively with cross-functional teams to enhance our security posture.
Responsibilities
Endpoint Security Management: Administer and support endpoint security solutions, including CrowdStrike, Microsoft Defender for Endpoint, Microsoft Defender for Mobile, and CyberArk EPM. Monitor endpoint security alerts and incidents, responding promptly to potential threats and vulnerabilities.
Threat Detection and Response: Analyze security events and alerts to identify potential threats and respond to incidents in a timely manner. Conduct forensic investigations on security incidents to determine the root cause and implement corrective actions.
Policy Configuration and Enforcement: Develop, implement, and enforce endpoint security policies and procedures to protect organizational assets. Configure and optimize security settings within endpoint security tools to enhance protection against threats.
User Support: Provide technical support to end-users regarding endpoint security tools and best practices.
Collaboration and Communication: Work closely with IT and security teams to integrate endpoint security solutions with existing security frameworks and incident response processes. Communicate effectively with stakeholders to report on security incidents, trends, and recommendations for improvement.
Documentation and Reporting: Maintain accurate documentation of endpoint security configurations, processes, and incident response actions. Generate reports on endpoint security metrics, incidents, and compliance for management review.
Continuous Improvement: Stay updated on the latest trends, threats, and technologies in endpoint security. Identify opportunities for process improvements and automation within endpoint security operations. Automate activities through scripting (PowerShell, Python) and automation tools (Tines, PowerAutomate, etc.).
Qualifications
Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field.
Proven experience in managing and supporting endpoint security solutions, including CrowdStrike, Microsoft Defender for Endpoint, Microsoft Defender for Mobile, and CyberArk EPM.
Strong understanding of endpoint security principles, threat detection, and incident response methodologies.
Proficiency in security monitoring tools and SIEM solutions.
Excellent problem-solving skills and attention to detail.
Strong communication and interpersonal skills.
Scripting experience, including PowerShell, Python, etc.
Ticket and change management experience in ServiceNow.
Relevant cybersecurity certifications (e.g., CompTIA Security+, CISSP, CEH) are a plus.
Preferred Skills
Experience with scripting languages (PowerShell, Python) for automation and reporting.
Familiarity with compliance frameworks (NIST, ISO 27001) and risk management practices.
Knowledge of network security concepts and technologies.
What We Offer At EY, we’ll develop you with future-focused skills and equip you with world-class experiences. We’ll empower you in a flexible environment, and fuel your talents in a diverse and inclusive culture of globally connected teams.
Comprehensive compensation and benefits package with base salary ranges to reflect geography and experience. Our Total Rewards includes medical and dental coverage, pension and 401(k) plans, and paid time off options.
Hybrid model: most client-facing roles are expected to work in person 40-60% of the time over an engagement or project.
Flexible vacation policy and designated leave options to support well-being.
Are you ready to shape your future with confidence? Apply today. EY accepts applications on an ongoing basis.
EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law. EY is committed to providing reasonable accommodation to qualified individuals with disabilities. If you need assistance applying online or an accommodation during the application process, please contact EY’s Talent Shared Services Team (TSS).
EY | Building a better working world
#J-18808-Ljbffr
Cyber SDC- Endpoint Security Lead Engineer - Senior - Consulting - Location Open Location: Anywhere in Country EY is shaping your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help build a better working world. We are looking for a dedicated Endpoint Security Operations Engineer to join our cybersecurity team. The ideal candidate will be responsible for the management, monitoring, and optimization of endpoint security solutions, including CrowdStrike, Microsoft Defender for Endpoint, Microsoft Defender for Mobile, and CyberArk Endpoint Privilege Manager (EPM). This role requires a strong understanding of endpoint security principles, threat detection, and incident response, as well as the ability to work collaboratively with cross-functional teams to enhance our security posture.
Responsibilities
Endpoint Security Management: Administer and support endpoint security solutions, including CrowdStrike, Microsoft Defender for Endpoint, Microsoft Defender for Mobile, and CyberArk EPM. Monitor endpoint security alerts and incidents, responding promptly to potential threats and vulnerabilities.
Threat Detection and Response: Analyze security events and alerts to identify potential threats and respond to incidents in a timely manner. Conduct forensic investigations on security incidents to determine the root cause and implement corrective actions.
Policy Configuration and Enforcement: Develop, implement, and enforce endpoint security policies and procedures to protect organizational assets. Configure and optimize security settings within endpoint security tools to enhance protection against threats.
User Support: Provide technical support to end-users regarding endpoint security tools and best practices.
Collaboration and Communication: Work closely with IT and security teams to integrate endpoint security solutions with existing security frameworks and incident response processes. Communicate effectively with stakeholders to report on security incidents, trends, and recommendations for improvement.
Documentation and Reporting: Maintain accurate documentation of endpoint security configurations, processes, and incident response actions. Generate reports on endpoint security metrics, incidents, and compliance for management review.
Continuous Improvement: Stay updated on the latest trends, threats, and technologies in endpoint security. Identify opportunities for process improvements and automation within endpoint security operations. Automate activities through scripting (PowerShell, Python) and automation tools (Tines, PowerAutomate, etc.).
Qualifications
Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field.
Proven experience in managing and supporting endpoint security solutions, including CrowdStrike, Microsoft Defender for Endpoint, Microsoft Defender for Mobile, and CyberArk EPM.
Strong understanding of endpoint security principles, threat detection, and incident response methodologies.
Proficiency in security monitoring tools and SIEM solutions.
Excellent problem-solving skills and attention to detail.
Strong communication and interpersonal skills.
Scripting experience, including PowerShell, Python, etc.
Ticket and change management experience in ServiceNow.
Relevant cybersecurity certifications (e.g., CompTIA Security+, CISSP, CEH) are a plus.
Preferred Skills
Experience with scripting languages (PowerShell, Python) for automation and reporting.
Familiarity with compliance frameworks (NIST, ISO 27001) and risk management practices.
Knowledge of network security concepts and technologies.
What We Offer At EY, we’ll develop you with future-focused skills and equip you with world-class experiences. We’ll empower you in a flexible environment, and fuel your talents in a diverse and inclusive culture of globally connected teams.
Comprehensive compensation and benefits package with base salary ranges to reflect geography and experience. Our Total Rewards includes medical and dental coverage, pension and 401(k) plans, and paid time off options.
Hybrid model: most client-facing roles are expected to work in person 40-60% of the time over an engagement or project.
Flexible vacation policy and designated leave options to support well-being.
Are you ready to shape your future with confidence? Apply today. EY accepts applications on an ongoing basis.
EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law. EY is committed to providing reasonable accommodation to qualified individuals with disabilities. If you need assistance applying online or an accommodation during the application process, please contact EY’s Talent Shared Services Team (TSS).
EY | Building a better working world
#J-18808-Ljbffr