Endpoint Security Engineer
**Job Description**:
**Title**:Endpoint Security Engineer
**Location**:Remote
**Job Overview**:
We are seeking a skilled Endpoint Security Engineer with a strong focus on security, compliance, and mobile device management. As part of our IT team, you will manage, optimize, and secure our endpoint and mobile devices. Your expertise in configuring, maintaining, and troubleshooting mobile devices and endpoints, as well as ensuring compliance with data security regulations, will be essential to the success of our organization's communication and collaboration strategies.
**Key responsibilities include**:
- Deploy and manage mobile devices across the organization to ensure seamless and secure access to corporate resources
- Develop and implement automation scripts to streamline repetitive tasks, enhance efficiency, and reduce human error
- Conduct thorough research and analysis to identify and recommend IT services, software, or hardware changes that align with business objectives, address current issues, and maintain PCI compliance standards
- Proactively identify, analyze, and resolve system problems, performance bottlenecks, and resource allocation inefficiencies, ensuring optimal system functionality and user experience
- Create and maintain detailed technical documentation for desktop-specific hardware and software, as well as IT process documentation, ensuring comprehensive knowledge transfer and consistent practices
- Manage user access controls from end to end, safeguarding corporate data and ensuring compliance with access policies
- Develop and update process, procedure, and troubleshooting documentation to provide clear guidance for resolving technical issues and maintaining system integrity
- Effectively manage the assigned ticket queue, prioritizing issues, providing timely updates, and ensuring timely resolution
- Proactively manage assigned projects or tasks, meeting deadlines, adhering to quality standards, and communicating effectively with stakeholders
- Respond promptly and effectively to security incidents, identifying, containing, analyzing, and mitigating their impact to minimize disruption and safeguard corporate assets
- Develop and maintain up-to-date and effective incident response procedures and playbooks, ensuring a comprehensive and coordinated approach to incident management
- Conduct thorough post-incident reviews to identify root causes, provide recommendations for improvement, and ensure adherence to industry standards and applicable regulations
- Collaborate closely with the vSOC to ensure the timely detection, reporting, and appropriate handling of security incidents
- Leverage industry-leading tools and techniques to provide technical expertise in threat analysis, vulnerability assessments, and penetration testing, proactively identifying and addressing potential security risks
- Work collaboratively with the IT team to implement robust security measures and controls, preventing future incidents and ensuring ongoing compliance with regulatory requirements
- Develop and maintain strong relationships with external stakeholders, staying abreast of the latest security trends and best practices to protect the organization's digital assets
- Readily take on any other assigned tasks, demonstrating a flexible and adaptable approach to fulfilling the needs of the organization
**Preferred Qualifications and Experience**:
- Bachelor's degree in Computer Science, Information Technology, or a related field
- 3+ years of experience in endpoint security engineering and deskside/executive support
- 2+ years of incident response experience
- Expert knowledge of Microsoft Office 365
- Strong Hardware and software troubleshooting skills in addition to Windows 10 installation and support experience
- Experience with Apple devices (laptops, phones and tablets)
- Experience with mobile device management (MDM) solutions
- Experience with security incident response and threat analysis
- Demonstrate expertise in Splunk administration, with the ability to design and implement complex dashboards and reports for comprehensive incident response support
- Experience with CrowdStrike Falcon Complete to provide advanced endpoint protection and leverage threat intelligence effectively
- Experience with SOAR D3 Integration to automate and orchestrate incident response activities seamlessly
- Demonstrate a deep understanding of Active Directory for managing user identities, access controls, and maintaining a secure computing environment
- Expertise in MS Defender to provide advanced threat protection for Windows endpoints and mitigate cyber threats effectively
- Solid English/communication skills, with the ability to clearly articulate technical information to non-technical stakeholders
- Excellent analytical, problem-solving, and customer service skills
- Ability to adapt to a fast-paced changing environment
- Ability to work independently and as part of a team