Description
- Engineer, implement, and optimize enterprise endpoint security platforms (e.g., EDR/XDR, endpoint protection, device control solutions).
- Design and maintain secure endpoint configuration baselines in alignment with enterprise architecture standards.
- Develop and maintain automation scripts and workflows (PowerShell, Python, or similar) to streamline security operations and endpoint management tasks.
- Partner with the SOC to tune detection content, reduce false positives, and improve automated response mechanisms.
- Support threat detection improvements by refining endpoint telemetry usage and response playbooks.
- Collaborate with Infrastructure and IT teams to ensure secure endpoint deployment, patching, and configuration management.
- Participate in vulnerability identification, remediation validation, and hardening initiatives across endpoint environments.
- Support compliance and audit requirements by validating endpoint control effectiveness and producing required documentation.
- Serve as a technical escalation point for complex endpoint security issues.
- Mentor junior security engineers in automation best practices and endpoint security standards.
- All other duties as assigned.
Core Competency Areas
- Endpoint Protection Platform (EPP/EDR/XDR) Engineering
- Security Automation & Scripting
- Detection Engineering & Response Optimization
- Vulnerability & Configuration Hardening
- Security Control Validation
- Incident Response Integration
This position contributes to strengthening enterprise endpoint defense and advancing automation maturity within the cybersecurity engineering function
Qualifications
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, Electronics & Communication, or a related technical discipline from a recognized university.
- Minimum of 3 years of experience implementing and operating enterprise security platforms, with emphasis on endpoint security or security automation
- Hands-on experience with endpoint protection platforms (EDR/XDR or equivalent).
- Demonstrated experience with scripting and automation (PowerShell preferred; Python acceptable).
- Experience collaborating with Security Operations (SOC) teams for detection tuning and incident response improvements.
- Understanding of endpoint hardening, vulnerability remediation processes, and security configuration standards.
- Strong analytical and troubleshooting skills.
- Effective written and verbal communication skills.
Preferred Qualifications
- Experience integrating endpoint platforms with SIEM or SOAR solutions.
- Exposure to cloud-managed endpoint security tools.
- Familiarity with MITRE ATT&CK framework and detection engineering concepts.
- Relevant certifications (e.g., Microsoft Security, CompTIA Security , or vendor-specific endpoint certifications).
This job posting will remain open a minimum of 72 hours and on an ongoing basis until filled.
Job Information Technology
Primary Location India-Karnataka-Bengaluru
Schedule: Full-time
Travel: No
Req ID: 261091
Job Hire Type Experienced Not Applicable #BMI N/A
