Introduction
A career in IBM Consulting is built on long-term client relationships and close collaboration worldwide. You'll work with leading companies across industries, helping them shape their hybrid cloud and AI journeys. With support from our strategic partners, robust IBM technology, and Red Hat, you'll have the tools to drive meaningful change and accelerate client impact. At IBM Consulting, curiosity fuels success. You'll be encouraged to challenge the norm, explore new ideas, and create innovative solutions that deliver real results. Our culture of growth and empathy focuses on your long-term career development while valuing your unique skills and experiences.
Your Role And Responsibilities
- The Endpoint Security Engineer is responsible for implementing, managing, and monitoring endpoint security controls across enterprise environments. The role focuses on Antivirus, DLP, Application Control, EDR/XDR platforms, malware analysis, and continuous event and infrastructure monitoring for Windows and Linux operating systems.
- Manage and operate Endpoint Protection Platforms (EPP) including Antivirus, Anti-malware, and Host-based controls
- Administer and tune EDR/XDR solutions for threat detection, investigation, and response
- Implement and manage Application Control / Whitelisting policies
- Monitor and enforce Endpoint DLP policies to prevent data leakage
- Perform malware analysis (static and behavioral) and support incident investigations
- Monitor endpoint security events, alerts, and telemetry via SIEM/SOAR integrations
- Conduct endpoint threat hunting and root-cause analysis
- Support incident response activities including containment, isolation, and remediation
- Monitor endpoint infrastructure health (agents, sensors, updates, connectivity)
- Ensure endpoint security compliance across Windows and Linux environments
- Coordinate with SOC, Infra, and IT teams for incident resolution and platform optimization
- Maintain documentation, SOPs, and operational runbooks.
Preferred Education
Bachelor's Degree
Required Technical And Professional Expertise
Firewall and Endpoint Security Technologies
PaloAlto, Fortinet, Cloud CDN and Akamai, Antivirus / Anti-malware solutions
CCNP, CCNA, NSE3 &4, PaloAlto certification
Ready to work in 24*7 shifts
Preferred Technical And Professional Experience
EDR / XDR platforms
Application Control
Endpoint DLP
Endpoint agent health, versioning, and policy compliance
Patch and update monitoring
Ready to work in 24*7 shifts
