Endpoint Security Engineer - Endpoint Detection & Response - CrowdStrike / SentinelOne / MS Defender

Endpoint Security Engineer - Endpoint Detection and Response (EDR) - CrowdStrike / SentinelOne / MS Defender

Large independent security services company require an Endpoint Security Engineer to be Endpoint Detection and Response (EDR) specialist to guide existing SOC Analysts and Engineers around EDR issues whilst continuing to support in defending clients from a range of complex threats by developing and enhancing their security capabilities.

Requirements

• Be able to demonstrate technical capability as a Security Engineer, ideally with enterprise level exposure and/or consulting experience.
• Deep knowledge of Endpoint Detection and Response tools such as CrowdStrike/SentinelOne/MS Defender
• Ability to create effective incident response playbooks and EDR policies.
• Proven technical knowledge with a range of cyber security technologies (experience of Splunk would be ideal)
• A continuous improvement mind-set with a constant desire to improve client's operations

Responsibilities:

• Acting as an endpoint detection and response (EDR) SME
• Constructing cyber incident response playbooks and malware use cases whilst guiding our client's response to malware incidents
• Developing an in-depth knowledge of numerous EDR toolsets including areas like policy management, break/fix and investigation
• Become familiar with several appropriate API's of specific ER tech
• Creation of EDR policies and signatures

This role will be based remotely initially and then from either Edinburgh or London office in the longer term.

Endpoint Security Engineer - Endpoint Detection and Response (EDR) - CrowdStrike / SentinelOne / MS Defender