Job Description
Endpoint Security Professional/Expert L2 (B3-1). Overview L2 Engineer - GSMC Endpoint Security Primary Skills: Cortex EDR/XDR, Sentinel EDR/XDR, CrowdStrike Microsoft Defender ATP, MS ATA, Additional Skills: E-Mail Security, DAM, CASB, CAS. Tata Communications looking for a senior Endpoint Security Engineer capable of supporting multiple EPP (Symantec, McAfee, Trend Micro, Microsoft, Checkpoint), DLP (Trellix, Forcepoint,Purview), EDR (FireEye/Sentinel/CrowdStrike/Cortex), Trend Micro DSM security solutions & XDR, Encryption, E-mail Security. Endpoint Security Engineer will be working with a team that is responsible for implementing, maintaining, and supporting endpoint security technologies, solutions, policies, and standards. The Endpoint Security team is consisting evolving capabilities, processes, and technologies. You must be willing to think out of the box and be comfortable taking educated risks to solve problems and provide solutions. Should be able to coordinate with all infra team and business team to address day to day security task. Prepare security service reports by collecting, analysing, and summarizing data and trends. Major Responsibilities:
Hands on experience (expert level) in implementing and supporting (Cortex EDR/XDR, Sentinel EDR/XDR, CrowdStrike, FireEye-EDR,) Endpoint solutions. Prior experience of Implementation, configuration, and management of EPP, EDR, XDR, DLP, E-Mail & Server Security solutions. Candidates must be experienced in administering Endpoint Security products such as Antivirus, full disk encryption (FDE), removable media encryption (RME) and data lost prevention (DLP), E-Mail Security, DAM etc. Administer Endpoint Security systems to ensure maximum uptime and client health compliance Understanding of various DBs including Oracle and SQL and troubleshooting of the same WRT to Endpoint solutions Monitor, respond to and analyses trends in Workstation / Servers & Cloud security related events Plan and implement endpoint security product upgrades while minimizing end user disruption and scaling infrastructure to maintain peak performance Solid understanding of security protocols, cryptography, authentication, authorization and security, IDS/IPS, HIPS, Firewalls, Network Proxies, Web Application Security, VPN and E-mail security. Be able to illustrate and explain use cases for implementation of EPP, DLP & EDR projects, Watchlists, reporting and correlations of data in SIEM from multiple data sources Ability to troubleshoot endpoint issues across complex enterprise applications, server and endpoint environments Assess and implement new security products and features Good understanding of malware operation and indicators or threat, current threat landscape (threat actors, APT, cyber-crime, etc.). Strong experience in managing Endpoint Agents over Windows and Linux operating systems, Active Directory Integrations, Windows Event Logs along with MacOS. Documents endpoint security systems policies, procedures, standards, and guidelines according to MSSP SLA and customers IT policies Support 24x7 shift operations for MSS Customers Handle tickets from the ticketing tool and ensure best practices and standard troubleshooting methodology to implement solutions to issues. Work across multiple technical teams towards common goals. Education & Experience: An engineering graduate with 7-10 years of Endpoint hands-on experience in listed technology. Specific 6-8 years of experience in Endpoint Security Administration (preference for candidates with experience on multi-vendor products) Knowledge of Network security tools and products like firewalls, IPS, SIEM etc. would be an advantage ITIL Certification or complete understanding of ITIL framework. CCNA, CEH, Security+ and any endpoint security certifications would be plus. Knowledge, Skills & Abilities: Strong knowledge of commonly-used concepts, practices, and procedures within the field of Endpoint Security. Good knowledge of SIEM technology to integrate Endpoint logs and insure 24x7 monitoring or security alerts. Strong knowledge and support of endpoint protection (EPP), DLP & Cloud Security solutions. Strong knowledge of endpoint level OS system. Strong analytical and problem-solving abilities. Strong written and verbal communication in English. Ability to collaborate with different teams to deliver services to customer. Willingness to work in 24x7 rotational shifts and/or be on-call rotations.
