EY
Cyber SDC- Endpoint Security Lead Engineer - Senior - Consulting - Location Open
EY, Oklahoma City, Oklahoma, United States, 73116
Cyber SDC- Endpoint Security Lead Engineer - Senior - Consulting - Location Open
Join to apply for the
Cyber SDC- Endpoint Security Lead Engineer - Senior - Consulting - Location Open
role at
EY . Location: Anywhere in country. Overview
We are looking for a dedicated and skilled Endpoint Security Operations Engineer to join our cybersecurity team. The ideal candidate will be responsible for the management, monitoring, and optimization of endpoint security solutions, including CrowdStrike, Microsoft Defender for Endpoint, Microsoft Defender for Mobile, and CyberArk Endpoint Privilege Manager (EPM). This role requires a strong understanding of endpoint security principles, threat detection, and incident response, as well as the ability to work collaboratively with cross-functional teams to enhance our security posture. Key Responsibilities
Endpoint Security Management: Administer and support endpoint security solutions (CrowdStrike, Defender for Endpoint, Defender for Mobile, CyberArk EPM); monitor alerts and incidents and respond to potential threats. Threat Detection and Response: Analyze security events to identify threats, respond to incidents, and conduct forensic investigations to determine root causes and implement corrective actions. Policy Configuration and Enforcement: Develop, implement, and enforce endpoint security policies and procedures; configure security settings to protect assets. User Support: Provide technical support to end-users regarding endpoint security tools and best practices. Collaboration and Communication: Work with IT and security teams to integrate endpoint security with existing frameworks and incident response processes; report on incidents, trends, and improvement recommendations. Documentation and Reporting: Maintain documentation of configurations, processes, and incident actions; generate reports on metrics, incidents, and compliance. Continuous Improvement: Stay updated on trends, threats, and technologies in endpoint security; identify opportunities for automation and process improvements; automate activities using scripting (PowerShell, Python) and automation tools (e.g., Tines, PowerAutomate). Qualifications
Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field. Proven experience managing and supporting endpoint security solutions (CrowdStrike, Defender for Endpoint, Defender for Mobile, CyberArk EPM). Strong understanding of endpoint security principles, threat detection, and incident response methodologies. Proficiency with security monitoring tools and SIEM solutions; excellent problem-solving and communication skills. Scripting experience (PowerShell, Python, etc.). Ticket and change management experience in ServiceNow. Relevant cybersecurity certifications (e.g., CompTIA Security+, CISSP, CEH) are a plus. Preferred Skills
Experience with automation scripting (PowerShell, Python) for reporting; familiarity with compliance frameworks (NIST, ISO 27001) and risk management; knowledge of network security concepts and technologies. What We Offer
Competitive compensation and benefits; base salary ranges vary by location; total rewards include medical and dental coverage, pension and 401(k), and paid time off. Hybrid working model with a mix of in-person and remote engagement. Flexible vacation policy and paid holidays; support for personal, family, and well-being needs. Are you ready to shape your future with confidence? Apply today. EY accepts applications on an ongoing basis. For California residents, additional information is available. EY is an equal opportunity employer and provides reasonable accommodations during the application process upon request.
#J-18808-Ljbffr
Join to apply for the
Cyber SDC- Endpoint Security Lead Engineer - Senior - Consulting - Location Open
role at
EY . Location: Anywhere in country. Overview
We are looking for a dedicated and skilled Endpoint Security Operations Engineer to join our cybersecurity team. The ideal candidate will be responsible for the management, monitoring, and optimization of endpoint security solutions, including CrowdStrike, Microsoft Defender for Endpoint, Microsoft Defender for Mobile, and CyberArk Endpoint Privilege Manager (EPM). This role requires a strong understanding of endpoint security principles, threat detection, and incident response, as well as the ability to work collaboratively with cross-functional teams to enhance our security posture. Key Responsibilities
Endpoint Security Management: Administer and support endpoint security solutions (CrowdStrike, Defender for Endpoint, Defender for Mobile, CyberArk EPM); monitor alerts and incidents and respond to potential threats. Threat Detection and Response: Analyze security events to identify threats, respond to incidents, and conduct forensic investigations to determine root causes and implement corrective actions. Policy Configuration and Enforcement: Develop, implement, and enforce endpoint security policies and procedures; configure security settings to protect assets. User Support: Provide technical support to end-users regarding endpoint security tools and best practices. Collaboration and Communication: Work with IT and security teams to integrate endpoint security with existing frameworks and incident response processes; report on incidents, trends, and improvement recommendations. Documentation and Reporting: Maintain documentation of configurations, processes, and incident actions; generate reports on metrics, incidents, and compliance. Continuous Improvement: Stay updated on trends, threats, and technologies in endpoint security; identify opportunities for automation and process improvements; automate activities using scripting (PowerShell, Python) and automation tools (e.g., Tines, PowerAutomate). Qualifications
Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field. Proven experience managing and supporting endpoint security solutions (CrowdStrike, Defender for Endpoint, Defender for Mobile, CyberArk EPM). Strong understanding of endpoint security principles, threat detection, and incident response methodologies. Proficiency with security monitoring tools and SIEM solutions; excellent problem-solving and communication skills. Scripting experience (PowerShell, Python, etc.). Ticket and change management experience in ServiceNow. Relevant cybersecurity certifications (e.g., CompTIA Security+, CISSP, CEH) are a plus. Preferred Skills
Experience with automation scripting (PowerShell, Python) for reporting; familiarity with compliance frameworks (NIST, ISO 27001) and risk management; knowledge of network security concepts and technologies. What We Offer
Competitive compensation and benefits; base salary ranges vary by location; total rewards include medical and dental coverage, pension and 401(k), and paid time off. Hybrid working model with a mix of in-person and remote engagement. Flexible vacation policy and paid holidays; support for personal, family, and well-being needs. Are you ready to shape your future with confidence? Apply today. EY accepts applications on an ongoing basis. For California residents, additional information is available. EY is an equal opportunity employer and provides reasonable accommodations during the application process upon request.
#J-18808-Ljbffr