EY
Cyber SDC- Endpoint Security Lead Engineer - Senior - Consulting - Location Open
EY, Alpharetta, Georgia, United States, 30239
Overview
Cyber SDC- Endpoint Security Lead Engineer - Senior - Consulting - Location Open. Location: Anywhere in Country. EY is seeking a dedicated and skilled Endpoint Security Operations Engineer to join our cybersecurity team. The role involves management, monitoring, and optimization of endpoint security solutions including CrowdStrike, Microsoft Defender for Endpoint, Microsoft Defender for Mobile, and CyberArk Endpoint Privilege Manager (EPM). Strong understanding of endpoint security, threat detection, incident response, and cross-functional collaboration is required. Key Responsibilities
Endpoint Security Management: Administer and support endpoint security solutions (CrowdStrike, Defender for Endpoint, Defender for Mobile, CyberArk EPM); monitor alerts and incidents; respond to threats and vulnerabilities. Threat Detection and Response: Analyze security events to identify threats; respond to incidents; conduct forensic investigations to determine root cause and implement corrective actions. Policy Configuration and Enforcement: Develop, implement, and enforce endpoint security policies; configure and optimize security settings within tools. User Support: Provide technical support to end-users on endpoint security tools and best practices. Collaboration and Communication: Work with IT and security teams to integrate solutions and communicate incidents, trends, and recommendations. Documentation and Reporting: Maintain documentation; generate reports on endpoint security metrics, incidents, and compliance. Continuous Improvement: Stay updated on trends; identify opportunities for process improvements and automation; automate activities via scripting (PowerShell, Python) and automation tools (Tines, PowerAutomate). Qualifications
Bachelor’s degree in computer science, IT, Cybersecurity, or related field. Proven experience in managing and supporting endpoint security solutions (CrowdStrike, Defender for Endpoint, Defender for Mobile, CyberArk EPM). Strong understanding of endpoint security principles, threat detection, and incident response methodologies. Proficiency in security monitoring tools and SIEM. Excellent problem-solving, attention to detail, and strong communication skills. Scripting experience (PowerShell, Python). Ticket and change management experience in ServiceNow. Relevant cybersecurity certifications (e.g., CompTIA Security+, CISSP, CEH) are a plus. Preferred Skills
Experience with scripting languages for automation and reporting. Familiarity with compliance frameworks (NIST, ISO 27001) and risk management practices. Knowledge of network security concepts and technologies. What We Offer
EY offers a comprehensive compensation and benefits package; base salary ranges apply by location. Hybrid work model; flexible vacation policy and paid holidays. EY focuses on equal employment opportunities and provides accommodations for disabilities.
#J-18808-Ljbffr
Cyber SDC- Endpoint Security Lead Engineer - Senior - Consulting - Location Open. Location: Anywhere in Country. EY is seeking a dedicated and skilled Endpoint Security Operations Engineer to join our cybersecurity team. The role involves management, monitoring, and optimization of endpoint security solutions including CrowdStrike, Microsoft Defender for Endpoint, Microsoft Defender for Mobile, and CyberArk Endpoint Privilege Manager (EPM). Strong understanding of endpoint security, threat detection, incident response, and cross-functional collaboration is required. Key Responsibilities
Endpoint Security Management: Administer and support endpoint security solutions (CrowdStrike, Defender for Endpoint, Defender for Mobile, CyberArk EPM); monitor alerts and incidents; respond to threats and vulnerabilities. Threat Detection and Response: Analyze security events to identify threats; respond to incidents; conduct forensic investigations to determine root cause and implement corrective actions. Policy Configuration and Enforcement: Develop, implement, and enforce endpoint security policies; configure and optimize security settings within tools. User Support: Provide technical support to end-users on endpoint security tools and best practices. Collaboration and Communication: Work with IT and security teams to integrate solutions and communicate incidents, trends, and recommendations. Documentation and Reporting: Maintain documentation; generate reports on endpoint security metrics, incidents, and compliance. Continuous Improvement: Stay updated on trends; identify opportunities for process improvements and automation; automate activities via scripting (PowerShell, Python) and automation tools (Tines, PowerAutomate). Qualifications
Bachelor’s degree in computer science, IT, Cybersecurity, or related field. Proven experience in managing and supporting endpoint security solutions (CrowdStrike, Defender for Endpoint, Defender for Mobile, CyberArk EPM). Strong understanding of endpoint security principles, threat detection, and incident response methodologies. Proficiency in security monitoring tools and SIEM. Excellent problem-solving, attention to detail, and strong communication skills. Scripting experience (PowerShell, Python). Ticket and change management experience in ServiceNow. Relevant cybersecurity certifications (e.g., CompTIA Security+, CISSP, CEH) are a plus. Preferred Skills
Experience with scripting languages for automation and reporting. Familiarity with compliance frameworks (NIST, ISO 27001) and risk management practices. Knowledge of network security concepts and technologies. What We Offer
EY offers a comprehensive compensation and benefits package; base salary ranges apply by location. Hybrid work model; flexible vacation policy and paid holidays. EY focuses on equal employment opportunities and provides accommodations for disabilities.
#J-18808-Ljbffr