Responsibilities
* Manage security endpoint protection tools and optimize configuration
* Analyze endpoint protection alerts and vulnerabilities and ensure remediation is complete
* Conduct Incident Response activities for security alerts and incidents through incident completion
* Analyze Intune Compliance and work with teams to resolve compliance issues
* Work with various teams on security initiatives
* Develop and implement plans to apply patches, hot fixes, and other critical updates and conduct audits to ensure compliance
* Conduct internal security assessments and provide guidance to address security gaps
* Analyze security policies and procedures to determine weakness in infrastructure and security controls and make recommendations for remediation
* Maintain current knowledge of tools and best-practices in cyber security
* Collaborate with other teams and stakeholders to provide feedback on detection gaps and features to improve security posture
* Assist with triage in the Security ticket queue
Minimum Qualifications & Skills
* Experience in vulnerability management processes and tools such as Microsoft Defender for Endpoint (MDE) Rapid7 InsightVM, Tenable Nessus, Qualys, etc.
* Experience with endpoint protection processes and tools such as Microsoft Defender for Endpoint (MDE, Symantec, Trellix/McAfee, etc.
* Experience with tools such as Intune, Microsoft Defender for Cloud, etc.
* Familiarity with security and risk assessments
* Knowledge of common application architectures
* Knowledge of risk assessment methodologies such as FAIR, OCTAVE, NIST RMF
* Excellent communication and interpersonal skills; detail-oriented, problem solver with strong initiative
Pluses
* Knowledge of software asset management desired
* Scripting experience required such as PowerShell
* IT Security Certification such as CISSP, GIAC, or GSEC
Client Description