Endpoint Engineer

Help AG is looking for an Endpoint Engineer with expertise on FireEye HX Endpoint Detection & Response (EDR) and FortiSOAR platform, as a member of the Managed Security Services (MSS) team and he/she is responsible for managing EDR infrastructure and handle endpoint related issues. Also, ideal candidate will have experience working within a Security Operation Center (SOC), experience with SOAR Playbook/Usecase/Workflow.

The endpoint engineer will serve as a subject matter expert for Managed Security Services and will be expected to stay in tune with client configuration issues and all internal projects.

Requirements

Responsibilities:

• Professional experience as a Security Engineer, EDR/SOAR Engineer.

• Hands-on and management experience specifically with FireEye endpoint security.

• Experience monitoring the operational/performance status of Windows/Mac/Linux endpoints including configurations and troubleshooting.

• Experience monitoring the operational/performance status of networks communications to/from endpoints as well as troubleshooting.

• Experience with operating system command-line utilities as well as PowerShell.

• Manage multi-tenant EDR environment.

• Monitors and maintains FireEye HX environment.

• Install new agents on all targeted endpoints.

• Effectively respond to all incidents related to all FireEye environments/infrastructure.

• Plan and participate in Cybersecurity improvement projects for the purpose of maintaining a mature security program.

• FortiSOAR expertise is preferred

• FortiSOAR Implementation, develop automation and orchestration use cases in SOAR.

• Integration with different solutions (SIEM, Ticketing System, Security Devices).

• Deploy & Enable Playbooks.

• Knowledge of security controls and mechanisms.

• Experience developing integration solutions with web service APIs using REST/JSON.

• Work directly with Security Information and Event Management (SIEM) Team and other security product owners to architect an end to end automation solution.

• Work with Incident Response teams to develop correlation rules and corresponding incident response workflows/playbooks.

• Experience with networking, network protocols & security infrastructures.

• Experience with scripting such as Python, Powershell, Bash, etc.

Qualifications & Skills:

• Bachelor's degree or equivalent and 6-8 years related experience.

• Prior experience working with Endpoint Detection & Response (EDR) products.

• 2 years experience in FireEye endpoint security.

• Expertise in SIEM tools such as LogRhythm & Splunk.

• 3+ years professional experience in the cyber security field.

• Experience in FortiSOAR (Security Orchestration and Automation)

• Professional security certifications, EDR, SOAR vendor certification (Security+, GCIA, CEH, CISSP, etc.)

• Prior experience working in a Security Operations Center.

Benefits

• Health insurance with one of the leading global providers for medical insurance.

• Career progression and growth through challenging projects and work.

• Employee engagement and wellness campaigns activities throughout the year.

• Excellent learning and development opportunities.

• Inclusive and diverse working environment.

• Flexible/Hybrid working environment.

• Annual flight tickets to home country.

• Open door policy.

About Us

Help AG is the cybersecurity arm of e& enterprise (formerly Etisalat Digital) and provides leading enterprise businesses and governments across the Middle East with strategic consultancy combined with tailored information security services and solutions that address their diverse requirements, enabling them to evolve securely with a competitive edge.

Present in the Middle East since 2004, Help AG was strategically acquired by e& (formerly Etisalat Group) in Feb 2020, hence creating a cybersecurity and digital transformation powerhouse in the region.

Help AG has firmly established itself as the region's trusted IT security advisor by remaining vendor-agnostic, trustworthy, independent, and cybersecurity focused. With best-of-breed technologies from industry-leading vendor partners, expertly qualified service delivery teams and a state-of-the-art consulting practice, Help AG delivers unmatched value to its customers by strengthening their cyber defenses and safeguarding their business.