Key Responsibilities
- Platform Management: Deploy and manage EPP (Endpoint Protection Platforms), EDR (Endpoint Detection and Response), and XDR tools like CrowdStrike, Microsoft Defender for Endpoint, or SentinelOne across heterogeneous environments (Windows, macOS, Linux).
- Policy Enforcement: Configure security baselines, device control policies, and Attack Surface Reduction (ASR) rules to prevent malicious execution.
- Network-Endpoint Integration: Manage secure remote access, including VPN and DLP (Data Loss Prevention) solutions, and implement Zero Trust network access protocols.
- Incident Response: Assist SOC (Security Operations Center) and Incident Response teams in isolating compromised endpoints and mitigating threats.
- Vulnerability Management: Routinely assess and patch endpoint vulnerabilities and manage software updates to prevent system exploits.
- Automation & Scripting: Use scripting languages (e.g., Python, PowerShell, Bash) and APIs to integrate endpoint data with SIEM platforms (e.g., Microsoft Sentinel, Splunk).
Core Requirements
- OS & Hardware Proficiency: Deep understanding of endpoint operating systems (Windows, Linux, macOS) and Virtual Desktop Infrastructure (VDI).
- Security Frameworks: Familiarity with implementing security standards like MITRE ATT&CK, NIST, and CIS.
- Networking Protocols: Solid grasp of LAN/WAN architectures, firewalls, and routing protocols to ensure security solutions do not disrupt connectivity.
- Analytical Skills: Ability to utilize query languages (like KQL) to hunt for threats and parse forensic data.
Typical Qualifications
- Education: Bachelor’s degree in Cybersecurity, Computer Science, or equivalent practical experience (typically requiring 1+ years of IT/Cybersecurity experience).
Pay: ₹20,000.00 - ₹25,000.00 per month
Benefits:
Work Location: In person
