Experience
8–12+ years in Cybersecurity Operations, Endpoint Security Architecture, and Incident Response (Enterprise SOC / MSSP / Telecom-grade SOC preferred)
Role Objective
The L3 End Point Security Engineer serves as the senior technical authority and strategic escalation point for endpoint, server, and network access security. This role owns architecture decisions, advanced investigations, detection strategy, threat response leadership, and continuous improvement across End Point Security services.
L3 is responsible for ensuring that people, tools, detection logic, and response processes operate at enterprise-grade maturity and align with business, compliance, and contractual SLAs.
Key Responsibilities
Enterprise AV / EDR Strategy & Advanced Threat Response
(SentinelOne / Trend Micro / Trellix)
Interested share your cv on [email protected]
Act as final technical escalation authority for critical endpoint security incidents
Lead investigation of:
o
Advanced persistent threats (APT)
o
Ransomware campaigns
o
Insider threats
Multi-stage endpoint attacks
Design and optimize EDR detection strategies, response workflows, and containment models
Review and approve:
EDR policies
Exclusions
Automated response actions
Trend Micro Deep Security – Architecture & Control Ownership
Own Deep Security architecture and hardening strategy
Define:
Anti-malware policies
IPS rule sets
Integrity Monitoring baselines
Ensure alignment with:
Compliance requirements (ISO, PCI, SOC, DPDP, etc.)
Secure server builds standards
Guide tuning and performance optimization at scale
Support audits, risk assessments, and regulatory reviews
File Integrity Monitoring (FIM) – Governance & Risk Alignment
Define FIM governance model (what, where, why to monitor)
Map FIM use-cases to:
Threat scenarios
Compliance controls
Validate critical incidents for potential compromise
Lead forensic interpretation of integrity violations
Ensure alert relevance, reduced noise, and audit readiness
Network Access Control (ClearPass Aruba)
Act as SME for NAC security architecture
Define posture assessment and enforcement strategies
Lead investigation of:
Compromised endpoints
Repeated access anomalies
Rogue / non-compliant device events
Required Skills & Expertise
Technical Expertise
Advanced endpoint threat detection & response
Malware, ransomware, and exploit chain analysis
MITRE ATT&CK mapping & kill-chain analysis
Endpoint + NAC + SIEM correlation
Incident command and crisis handling
Platforms
Expert-level experience with multiple EDR platforms
Trend Micro Deep Security advanced configuration
ClearPass Aruba architecture
SIEM & threat intelligence integration
Certifications (Highly Desired)
GCED / GCIA / GCIH
Advanced EDR vendor certifications
Incident Response / Digital Forensics
Interested Share your CV on
Pay: ₹600,000.00 - ₹800,000.00 per year
Work Location: In person