Security Engineer II

📋 Description

• Deliver expert-level EDR support for internal and external customers.
• Provide deep EDR platform expertise: config, tuning, deployment, troubleshooting.
• Escalate complex EDR incidents and investigations.
• Guide customers on security improvements within their environments.
• Assess customer risk and advise on security controls to reduce exposure.
• Translate technical findings into actionable business recommendations.
• Perform routine EDR health checks to identify gaps and misconfigurations.
• Manage EDR versioning to keep deployments current.
• Monitor EDR performance and identify optimization opportunities.
• Develop and improve SOPs for EDR operations for teams and customers.
• Document best practices for EDR deployment, tuning, and alerting.
• Contribute to knowledge bases, runbooks, and training materials.

🎯 Requirements

• Diploma or bachelor’s degree in CS, cybersecurity, IT, or related field.
• Minimum 4+ years of progressive cybersecurity experience.
• Enterprise administration across Windows, macOS, and Linux.
• Hands-on with EDR tools such as CrowdStrike Falcon, SentinelOne, Defender for Endpoint.
• Fundamentals of cybersecurity: malware, network protection, incident response.
• Scripting in Python, PowerShell, or Bash.
• Know deception tech (Thinkst Canary) and NTA tech (Corelight).
• Familiar with log analysis/SIEM (Splunk, XSIAM, CS NG-SEIM).
• Strong analytical and problem-solving skills with attention to detail.
• Clear written and verbal communication for technical and non-technical audiences.