Senior Cybersecurity Engineer

Job Title: Senior Endpoint Detection and Response (EDR) Engineer / Cybersecurity Engineer

Work Location: Washington, DC

Full time

Security Clearance

Public Trust High (Tier 4/BI) Risk Level

Must be a US citizen or Lawful Permanent Resident

Education & Experience

• Bachelor's degree in computer science, cybersecurity, information technology, software engineering, information systems, or computer engineering, or a related field
• Deep hands-on experience with CrowdStrike and Trellix HX EDR deployments
• 3 years of experience with EDR deployment, configuration, maintenance, and supporting enterprise EDR solutions, including CrowdStrike Falcon, Carbon Black EDR, SentinelOne, FireEye HX, McAfee MVision, Microsoft Defender for Endpoint (MDE), Tanium, or Elastic Endpoint Protection deployments.
• 3 years of experience performing CrowdStrike EDR systems administration, including basic troubleshooting and installation, monitoring system performance or availability, performing security upgrades, and optimizing solution configurations to meet the needs of operational users.
• 2 years of experience working in a Security Operations Center (SOC) environment, leveraging EDR tools to support incident response, vulnerability scanning, threat hunting, network monitoring and log management, and compliance management activities.
• Experience with optimization of EDR solutions, including refinement data produced, development of automated workflows or playbooks, integration of EDR data with Enterprise solutions (SIEM, ITSM, TIP)
• Ability to provide content on deliverables, including written reports and technical documents, SOPs and configuration guides, and training and briefing materials.
• Experience with ServiceNow SecOps and Vulnerability Management a plus
• Strong experience fine-tuning controls to meet standards utilizing custom controls and regex Understanding of networking technologies and concepts (routing, switching, network segmentation, etc.) Programming and scripting languages, preferably Python and PowerShell.
• Strong written and verbal communication skills; must be able to effectively communicate with all levels of staff up to executive-level management, customers (internal and external), and vendors.
• Ability to work effectively under pressure; previous experience as an emergency medical responder, firefighter, or related high-pressure environment preferred but not required
• Familiar with and have worked within security frameworks such as: NIST SP 800-61, Attack lifecycle, SANS Security Controls, MITRE ATT&CK, Kill chain, OWASP Top 10

Certifications

• CrowdStrike Certified Falcon Administrator certification preferred
• Other certifications in CrowdStrike or related certifications (e.g., SentinelOne, Trellix HX, Microsoft Defender) is a plus
• Preference given for CCE, CCFE, CEH, CPT, CREA, GCFE, GCFA, GCIH, GCIA GIAC, Splunk Core, OSCP, SANS Security 500 Series or other industry standard equivalent

Thanks,

Anshika

Mobile: 469-647-8883

anshika@intellisofttech.com