Cynet Systems is Hiring an Information Security Engineer - Endpoint Near Baltimore, MD
Job Description: Pay Range $62hr - $67hr
Implement, operate, administer, and maintain Clients endpoint security capabilities.
Monitor and respond to alerts from CISCO AMP.
Ensure all workstations and servers have recent AMP agent installed.
Support incident response and maintenance of Incident Response Plan.
Troubleshoot and be the technical point of contact for any issues that may arise from endpoint security instrumentation on Unix/Linux or Microsoft Windows systems.
Conduct gap analysis and provide recommendations for improvements to the Clients endpoint security architecture.
Develop technical mitigation and remediation strategies to deal with threats on Clients endpoints.
Develop metrics to ensure the system is operating as designed, identify patterns of alerts and support analysis to drive improvements to our security posture.
Provide monthly metrics for endpoint security.
Collaborate with Information Security team and support other stakeholders in threat hunting and other activities.
Provide technical expertise and operational planning support for implementing Endpoint Security products across Client endpoints.
Document endpoint architecture, processes and procedures that go into endpoint security management.
Provide regular status updates and briefings to Information Security management and outside stakeholders.
Support security engineering assessments on new systems and major upgrades as bandwidth allows.
Education:
Bachelor of Science degree in computer engineering/science or related field.
Certifications:
CISSP.
CCSP.
CEH.
Security .
Network .
Experience:
Five plus (5 ) years of related specialty IT experience (for example, but not limited to: system engineering, desktop engineering, scripting and packaging, network engineering, information security, etc).
4 plus (4 ) years of experience administrating endpoint security solutions.
2 plus (2 ) years of experience working with Endpoint Detection and Response (EDR) tools such as: FireEye HX, Carbon Black, Tanium, Microsoft Defender ATP, CrowdStrike Falcon Insight, and other equivalent toolsets.
2 plus years of experience working with Antivirus (AV) tools such as: Microsoft Defender, Symantec Endpoint Protection, McAfee ePO, Bitdefender, and other equivalent toolsets.
Experience with troubleshooting Unix/Linux and Microsoft Windows systems.
Skills:
Knowledge of MITRE Telecommunication & CK techniques preferred.
Solid understanding of security fundamentals and information security control frameworks.
Basic technical understanding in the following areas: network communication using TCP/IP protocols, basic system administration, virtual systems, active directory architecture, cloud technologies, web proxies, etc.
Good team player, self-confident, motivated, and independent, capable of working with little to no instructions.
bility to multi-task and work under pressure in a fast-paced environment.
ttention to details and good problem-solving skills.
dvanced communications and presentations skills (verbal and written) enabling precise conveyance of information.