Cybersecurity Engineer - Endpoint Detection
Tasks
- Conduct incident investigations using endpoint telemetry
- Configure and optimize EDR and EPM platforms
- Coordinate with endpoint platform vendors on escalations and support
- Define endpoint hardening standards
- Develop refine endpoint detections using MITRE ATTACK
- Improve detection fidelity and reduce false positives
- Integrate endpoints with SIEM and SOAR
- Manage agent lifecycle upgrades rollouts and rollback
- Monitor agent health fleet coverage and version compliance
- Perform root cause analysis and implement prevention improvements
- Perform threat hunting using behavioral analytics
- Troubleshoot endpoint agent performance stability and interoperability issues
- Tune detection policies and response baselines
- Write and maintain technical documentation runbooks and guides
Perks/Benefits
- 401k matching
- Dental insurance
- Development and career growth
- Employee assistance program
- Employee stock purchase program
- Family care and bonding leave
- Life insurance
- Medical insurance
- Paid Company Holidays
- Paid time off
- Student debt assistance
- Tuition reimbursement
- Vision insurance
- Wellness benefits
Skills/Tech-stack
800-53 | CIS Controls | Detection engineering | Digital forensics | EDP | EDR | EDR and XDR | EPM | Endpoint Security | Endpoint hardening | ISO 27001 | Intune | Jamf | KQL | Linux | MDM | MITRE ATTACK mapping | MacOS | Malware analysis | Mitre Attack | NIST 800 | NIST 800-53 | PCI DSS | Powershell | Python | Reverse Engineering | SIEM | SOAR | SPL | SoC | Threat hunting | Windows | Workspace One
Related jobs
-
Senior Information Systems Security Engineer USD 150K-190K800-53 | 800-53A | ATO | Assessment and Authorization | Continuous MonitoringSenior-level Full TimeHUNTSVILLE, AL, United States8h ago
-
API Security Engineer USD 141K-203KAPI Authentication | API Gateway | API Gateway Security | API Security | API authorizationSenior-level Full TimeIndia Pune (Mississippi Building)1d ago
-
Security Operations Engineer USD 42K-46KAccess Management | Cause analysis | Cloud Security | EDR | Forensic analysisCustomer-focused culture | Flexible schedule | Hybrid work schedule | On-call rotationMid-level Full Time1300 Gezon Pkwy SW, Wyoming MI, … R1d ago
-
Agile | Alerting | Automated testing | Azure DevOps | CI/CDAgile based delivery | Onsite meetings in Washington DC | Remote workMid-level Full TimeUnited States - Remote R1d ago
-
Mid-level Full Time1662 Intelligence Community Campus - Bethesda …1d ago
-
Mid-level Full Time1662 Intelligence Community Campus - Bethesda …1d ago
-
Software Test Engineer USD 73K-132KAgile Scrum | Automated testing | Automated testing tools | Git | JavaScript401k match | Education and training support | Flexible schedule | Paid Holidays | Paid time offSenior-level Full Time9340 San Diego CA Non-specific Customer …1d ago
-
Mainframe Security - Lead Information Security Engineer USD 119K-206KAccess Management | Ansible | Authentication | Availability | Business Continuity401k plan | Commuter benefits | Hybrid work schedule | Paid time off | Parental leaveSenior-level Full Time141278-NC-CIC Customer Information Ctr, United States1d ago
-
UNIX/Linux Sr. Systems Administrator (Projects) USD 107K-188KAnsible | Application Server | Automation | Capacity Planning | CentOS401k match | Comprehensive healthcare | HSA matching | Ongoing learning opportunities | Unlimited paid time offSenior-level Full TimeFedEx Hartford, CT, United States1d ago
-
Sr. Threat Intelligence Analyst USD 30KASM | Attack surface | Attack surface management | CAASM | CVE401k match | Adoption Assistance | Dental insurance | Education assistance program | Health insuranceSenior-level Full TimeMiami FL (Waterford), United States1d ago
-
Mid-level Full TimeSan Jose, California, United States1d ago
-
AD FS | AD RMS | Active Directory | DHCP | DNSDirect hire | TS/SCI clearanceMid-level Full TimeChantilly, VA1d ago
-
API Integration | Artificial Intelligence | C++ | Cloud Computing | Cloud StorageSenior-level Full TimeRemote, US R1d ago
-
Senior IT Network Tools Consultant USD 160K-200KCisco | Dashboards | Data Analysis | Data Science | Network Engineering401k company match | Complimentary Identity Theft Protection | Life and disability insurance | Medical, dental, and vision insurance | Paid time offSenior-level Full TimeAnnapolis Junction, MD1d ago
-
Active Directory | Backups and restores | Cisco | DISA standards | Data Loss PreventionClearance support TS SCI | On site work M to F | Training supportMid-level Full TimeWashington, DC1d ago
-
Application Security | Concept testing | Configuration Management | Database Servers | Detection and preventionMid-level Full TimeHerndon, Virginia1d ago
-
AWS | Ansible | As-a-Service | Cloud Command Line Interface | Cloud ComputingMid-level Full TimeReston, VA1d ago
-
Bash | Case Development | Configuration Management | Data Analysis | DatabaseCI poly clearance | TS/SCI clearanceMid-level Full TimeLinthicum Heights, MD1d ago
-
Automation | Backup and Recovery | Database performance | Disaster Recovery | FailoverMid-level Full TimeLinthicum Heights, MD1d ago
-
Automated testing | Automated testing tools | Automation | Database Administration | DiagnosticsTS SCI CI Poly clearanceMid-level Full TimeLinthicum Heights, MD1d ago
-
Mid-level Full TimeLinthicum Heights, MD1d ago
-
Algorithms | C++ | Data Modeling | Database Design | DebuggingSenior-level Full TimeFort George G Meade, MD1d ago
-
Agile | Amazon Web Services | Ansible | Apache | Cloud platformTop Secret SCI clearanceMid-level Full TimeReston, VA1d ago
-
ACAS | Active Directory | Ansible | Cisco IOS | Cisco ISEMid-level Full TimeReston, VA1d ago
-
Mid-level Full TimeReston, VA1d ago