网络与终端安全工程师

Tasks

• Conduct vendor implementation and acceptance testing
• Configure USB and external device controls
• Configure WAF and IDS IPS for threat protection
• Configure network segmentation and access control
• Design network security
• Enforce endpoint compliance baseline
• Implement patch management strategy
• Implement security delivery and lifecycle operations
• Maintain configuration manuals and runbooks
• Manage ACL changes and rollout plans
• Manage EDR and antivirus policies
• Manage disk encryption policies
• Manage endpoint exceptions and alert linkage
• Manage zero trust and VPN deployment
• Map endpoint TTPs to EDR strategies
• Perform MITRE ATT&CK gap analysis
• Perform patching and security policy inspection
• Plan and deploy endpoint security stack
• Plan capacity and handle incidents
• Run POC and vendor comparison
• Support SOC alert semantic alignment
• Support SOC logging and traffic visibility
• Support security product selection and procurement
• Tune detection and prevention strategies
• Tune firewall and boundary protection policies
• Write and review network security baseline

Perks/Benefits

• N/A

Skills/Tech-stack

Access Control | Antivirus | Device Control | Disk encryption | EDR | Firewall | Group Policy | IDS | IPS | Log Management | MDM | MITRE ATT&CK | MacOS | NAC | Network Segmentation | Patch Management | Routing | SSL-VPN | SoC integration | Switching | TCPIP | USB device control | VPN | WAF | Windows | Zero Trust