EY
Cyber SDC- Endpoint Security Lead Engineer - Senior - Consulting - Location Open
EY, Fort Worth, Texas, United States, 76102
Overview
Cyber SDC- Endpoint Security Lead Engineer - Senior - Consulting - Location Open. Location: Anywhere in Country. EY is shaping your future with confidence and supporting cross-functional teams to build a better working world. We are looking for an Endpoint Security Operations Engineer to join our cybersecurity team, responsible for the management, monitoring, and optimization of endpoint security solutions (CrowdStrike, Microsoft Defender for Endpoint, Microsoft Defender for Mobile, and CyberArk EPM). The role requires a strong understanding of endpoint security, threat detection, incident response, and collaboration with IT and security teams. Key Responsibilities
Endpoint Security Management: Administer and support endpoint security solutions (CrowdStrike, Defender for Endpoint, Defender for Mobile, CyberArk EPM). Monitor alerts and incidents and respond to threats and vulnerabilities. Threat Detection and Response: Analyze security events to identify threats, respond to incidents, and conduct forensic investigations to determine root causes and implement corrective actions. Policy Configuration and Enforcement: Develop, implement, and enforce endpoint security policies and configuration of security settings to enhance protection. User Support: Provide technical support to end-users regarding endpoint security tools and best practices. Collaboration and Communication: Work with IT and security teams to integrate endpoint security with security frameworks and incident response processes; communicate incidents, trends, and improvement recommendations to stakeholders. Documentation and Reporting: Maintain documentation of configurations and incident actions; generate reports on endpoint security metrics and compliance for management review. Continuous Improvement: Stay updated on trends and technologies; identify opportunities for process improvements and automation; automate activities using scripting (PowerShell, Python) and automation tools (Tines, PowerAutomate, etc.). Qualifications
Bachelor’s degree in computer science, IT, Cybersecurity, or related field. Proven experience managing and supporting endpoint security solutions (CrowdStrike, Defender for Endpoint, Defender for Mobile, CyberArk EPM). Strong understanding of endpoint security principles, threat detection, and incident response methodologies. Proficiency in security monitoring tools and SIEM solutions. Excellent problem-solving, attention to detail, and communication skills. Scripting experience (PowerShell, Python, etc.). Ticket and change management experience in ServiceNow. Relevant cybersecurity certifications (e.g., CompTIA Security+, CISSP, CEH) are a plus. Preferred Skills
Experience with scripting languages (PowerShell, Python) for automation and reporting. Familiarity with compliance frameworks (NIST, ISO 27001) and risk management practices. Knowledge of network security concepts and technologies. What We Offer
Comprehensive compensation and benefits package; base salary ranges (US): 77,500 to 140,900; NYC Metro/WA/CA: 92,900 to 160,500. Total Rewards include medical/dental, pension, 401(k), and paid time off options. Hybrid model: most client-facing roles require 40-60% in-person work over a project or year. Flexible vacation policy and leave options to support well-being. Open Details
Seniority level: Mid-Senior level Employment type: Full-time Job function: Information Technology Industries: Professional Services EEO and Accessibility
EY is an equal employment opportunity employer. EY provides reasonable accommodations to qualified individuals with disabilities. If you need assistance applying online or an accommodation during any part of the application process, please contact EY’s Talent Shared Services Team (TSS) at the numbers and email provided in the original posting.
#J-18808-Ljbffr
Cyber SDC- Endpoint Security Lead Engineer - Senior - Consulting - Location Open. Location: Anywhere in Country. EY is shaping your future with confidence and supporting cross-functional teams to build a better working world. We are looking for an Endpoint Security Operations Engineer to join our cybersecurity team, responsible for the management, monitoring, and optimization of endpoint security solutions (CrowdStrike, Microsoft Defender for Endpoint, Microsoft Defender for Mobile, and CyberArk EPM). The role requires a strong understanding of endpoint security, threat detection, incident response, and collaboration with IT and security teams. Key Responsibilities
Endpoint Security Management: Administer and support endpoint security solutions (CrowdStrike, Defender for Endpoint, Defender for Mobile, CyberArk EPM). Monitor alerts and incidents and respond to threats and vulnerabilities. Threat Detection and Response: Analyze security events to identify threats, respond to incidents, and conduct forensic investigations to determine root causes and implement corrective actions. Policy Configuration and Enforcement: Develop, implement, and enforce endpoint security policies and configuration of security settings to enhance protection. User Support: Provide technical support to end-users regarding endpoint security tools and best practices. Collaboration and Communication: Work with IT and security teams to integrate endpoint security with security frameworks and incident response processes; communicate incidents, trends, and improvement recommendations to stakeholders. Documentation and Reporting: Maintain documentation of configurations and incident actions; generate reports on endpoint security metrics and compliance for management review. Continuous Improvement: Stay updated on trends and technologies; identify opportunities for process improvements and automation; automate activities using scripting (PowerShell, Python) and automation tools (Tines, PowerAutomate, etc.). Qualifications
Bachelor’s degree in computer science, IT, Cybersecurity, or related field. Proven experience managing and supporting endpoint security solutions (CrowdStrike, Defender for Endpoint, Defender for Mobile, CyberArk EPM). Strong understanding of endpoint security principles, threat detection, and incident response methodologies. Proficiency in security monitoring tools and SIEM solutions. Excellent problem-solving, attention to detail, and communication skills. Scripting experience (PowerShell, Python, etc.). Ticket and change management experience in ServiceNow. Relevant cybersecurity certifications (e.g., CompTIA Security+, CISSP, CEH) are a plus. Preferred Skills
Experience with scripting languages (PowerShell, Python) for automation and reporting. Familiarity with compliance frameworks (NIST, ISO 27001) and risk management practices. Knowledge of network security concepts and technologies. What We Offer
Comprehensive compensation and benefits package; base salary ranges (US): 77,500 to 140,900; NYC Metro/WA/CA: 92,900 to 160,500. Total Rewards include medical/dental, pension, 401(k), and paid time off options. Hybrid model: most client-facing roles require 40-60% in-person work over a project or year. Flexible vacation policy and leave options to support well-being. Open Details
Seniority level: Mid-Senior level Employment type: Full-time Job function: Information Technology Industries: Professional Services EEO and Accessibility
EY is an equal employment opportunity employer. EY provides reasonable accommodations to qualified individuals with disabilities. If you need assistance applying online or an accommodation during any part of the application process, please contact EY’s Talent Shared Services Team (TSS) at the numbers and email provided in the original posting.
#J-18808-Ljbffr