Track Lead - Symantec Email Security, Endpoint Security
India
Apply now
Job Description
Track Lead - Symantec Email Security, Endpoint Security
Sholinganallur, Tamil Nadu

Job Summary

\r\nL3 - Subject Matter Expert (EDR Solutions)\r\n\r\nJob Title: L3 Subject Matter Expert - EDR Solutions (CrowdStrike)\r\n\r\nLocation: Hybrid, 24x7 Shifts\r\n\r\nJob Type: Full-Time (Rotational Shift Model, including weekends and holidays)\r\n\r\nExperience:  6+ years in Endpoint Security Operations\r\n\r\n \r\n\r\nJob Summary:\r\n\r\nAs an L3 Subject Matter Expert, you will act as the technical lead for EDR platform management, focusing on policy optimization, platform stability, and advanced troubleshooting across multiple EDR solutions including CrowdStrike. Responsibilities include designing and fine-tuning security policies, optimizing EDR configurations, and ensuring seamless integration with SIEM and SOAR platforms. You will develop custom queries for proactive threat detection, troubleshoot platform-wide performance issues, and ensure regulatory compliance (e.g., PCI DSS, ISO 27001). Additionally, you will conduct root cause analysis (RCA) for platform failures and provide technical leadership to L2 analysts.\r\n\r\n \r\n\r\nKey Responsibilities:\r\n\r\nAct as the escalation point for EDR-related security incidents.\r\nManage and optimize EDR policies and configurations across multiple platforms.\r\nConduct deep-dive analysis of alerts, telemetry, and logs from EDR and related security tools.\r\nEnsure EDR integration with SIEM, SOAR, and other security platforms.\r\nProvide recommendations for security hardening and compliance with industry standards.\r\nAct as the SME for EDR solutions and provide technical guidance to L1 and L2 analysts.\r\nConduct root cause analysis (RCA) and contribute to post-incident review reports.\r\nCollaborate with vendor support teams for issue resolution and product improvements.\r\nProvide technical recommendations to improve endpoint security posture.\r\nEnsure EDR aligns with organizational security policies and regulatory requirements.\r\nDevelop detailed reports on incidents, security posture, and threat trends.\r\nAssist in audits and compliance assessments related to endpoint security.\r\nRequired Skills & Knowledge:\r\n\r\nExpertise in CrowdStrike.\r\nStrong understanding of EDR, XDR, SIEM, and SOAR.\r\nStrong problem-solving and analytical thinking.\r\nExcellent communication and stakeholder management skills.\r\nAbility to lead technical discussions and mentor junior analysts.\r\nAdaptability to fast-changing security landscapes.\r\nFamiliarity with cloud security solutions.\r\nWork Environment & Shift Requirements:\r\n\r\n24x7 support model with rotational shifts (including nights, weekends, and holidays).\r\nAbility to work in a fast-paced, high-pressure Security environment.\r\nExcellent collaboration and coordination with global cybersecurity teams.\r\nPreferred Certifications:\r\n\r\nCrowdStrike Certified Falcon Administrator (CCFA)\r\n

Key Responsibilities

\r\nL3 - Subject Matter Expert (EDR Solutions)\r\n\r\nJob Title: L3 Subject Matter Expert - EDR Solutions (CrowdStrike)\r\n\r\nLocation: Hybrid, 24x7 Shifts\r\n\r\nJob Type: Full-Time (Rotational Shift Model, including weekends and holidays)\r\n\r\nExperience:  6+ years in Endpoint Security Operations\r\n\r\n \r\n\r\nJob Summary:\r\n\r\nAs an L3 Subject Matter Expert, you will act as the technical lead for EDR platform management, focusing on policy optimization, platform stability, and advanced troubleshooting across multiple EDR solutions including CrowdStrike. Responsibilities include designing and fine-tuning security policies, optimizing EDR configurations, and ensuring seamless integration with SIEM and SOAR platforms. You will develop custom queries for proactive threat detection, troubleshoot platform-wide performance issues, and ensure regulatory compliance (e.g., PCI DSS, ISO 27001). Additionally, you will conduct root cause analysis (RCA) for platform failures and provide technical leadership to L2 analysts.\r\n\r\n \r\n\r\nKey Responsibilities:\r\n\r\nAct as the escalation point for EDR-related security incidents.\r\nManage and optimize EDR policies and configurations across multiple platforms.\r\nConduct deep-dive analysis of alerts, telemetry, and logs from EDR and related security tools.\r\nEnsure EDR integration with SIEM, SOAR, and other security platforms.\r\nProvide recommendations for security hardening and compliance with industry standards.\r\nAct as the SME for EDR solutions and provide technical guidance to L1 and L2 analysts.\r\nConduct root cause analysis (RCA) and contribute to post-incident review reports.\r\nCollaborate with vendor support teams for issue resolution and product improvements.\r\nProvide technical recommendations to improve endpoint security posture.\r\nEnsure EDR aligns with organizational security policies and regulatory requirements.\r\nDevelop detailed reports on incidents, security posture, and threat trends.\r\nAssist in audits and compliance assessments related to endpoint security.\r\nRequired Skills & Knowledge:\r\n\r\nExpertise in CrowdStrike.\r\nStrong understanding of EDR, XDR, SIEM, and SOAR.\r\nStrong problem-solving and analytical thinking.\r\nExcellent communication and stakeholder management skills.\r\nAbility to lead technical discussions and mentor junior analysts.\r\nAdaptability to fast-changing security landscapes.\r\nFamiliarity with cloud security solutions.\r\nWork Environment & Shift Requirements:\r\n\r\n24x7 support model with rotational shifts (including nights, weekends, and holidays).\r\nAbility to work in a fast-paced, high-pressure Security environment.\r\nExcellent collaboration and coordination with global cybersecurity teams.\r\nPreferred Certifications:\r\n\r\nCrowdStrike Certified Falcon Administrator (CCFA)\r\n

Skill Requirements

\r\nL3 - Subject Matter Expert (EDR Solutions)\r\n\r\nJob Title: L3 Subject Matter Expert - EDR Solutions (CrowdStrike)\r\n\r\nLocation: Hybrid, 24x7 Shifts\r\n\r\nJob Type: Full-Time (Rotational Shift Model, including weekends and holidays)\r\n\r\nExperience:  6+ years in Endpoint Security Operations\r\n\r\n \r\n\r\nJob Summary:\r\n\r\nAs an L3 Subject Matter Expert, you will act as the technical lead for EDR platform management, focusing on policy optimization, platform stability, and advanced troubleshooting across multiple EDR solutions including CrowdStrike. Responsibilities include designing and fine-tuning security policies, optimizing EDR configurations, and ensuring seamless integration with SIEM and SOAR platforms. You will develop custom queries for proactive threat detection, troubleshoot platform-wide performance issues, and ensure regulatory compliance (e.g., PCI DSS, ISO 27001). Additionally, you will conduct root cause analysis (RCA) for platform failures and provide technical leadership to L2 analysts.\r\n\r\n \r\n\r\nKey Responsibilities:\r\n\r\nAct as the escalation point for EDR-related security incidents.\r\nManage and optimize EDR policies and configurations across multiple platforms.\r\nConduct deep-dive analysis of alerts, telemetry, and logs from EDR and related security tools.\r\nEnsure EDR integration with SIEM, SOAR, and other security platforms.\r\nProvide recommendations for security hardening and compliance with industry standards.\r\nAct as the SME for EDR solutions and provide technical guidance to L1 and L2 analysts.\r\nConduct root cause analysis (RCA) and contribute to post-incident review reports.\r\nCollaborate with vendor support teams for issue resolution and product improvements.\r\nProvide technical recommendations to improve endpoint security posture.\r\nEnsure EDR aligns with organizational security policies and regulatory requirements.\r\nDevelop detailed reports on incidents, security posture, and threat trends.\r\nAssist in audits and compliance assessments related to endpoint security.\r\nRequired Skills & Knowledge:\r\n\r\nExpertise in CrowdStrike.\r\nStrong understanding of EDR, XDR, SIEM, and SOAR.\r\nStrong problem-solving and analytical thinking.\r\nExcellent communication and stakeholder management skills.\r\nAbility to lead technical discussions and mentor junior analysts.\r\nAdaptability to fast-changing security landscapes.\r\nFamiliarity with cloud security solutions.\r\nWork Environment & Shift Requirements:\r\n\r\n24x7 support model with rotational shifts (including nights, weekends, and holidays).\r\nAbility to work in a fast-paced, high-pressure Security environment.\r\nExcellent collaboration and coordination with global cybersecurity teams.\r\nPreferred Certifications:\r\n\r\nCrowdStrike Certified Falcon Administrator (CCFA)\r\n

Other Requirements

\r\nL3 - Subject Matter Expert (EDR Solutions)\r\n\r\nJob Title: L3 Subject Matter Expert - EDR Solutions (CrowdStrike)\r\n\r\nLocation: Hybrid, 24x7 Shifts\r\n\r\nJob Type: Full-Time (Rotational Shift Model, including weekends and holidays)\r\n\r\nExperience:  6+ years in Endpoint Security Operations\r\n\r\n \r\n\r\nJob Summary:\r\n\r\nAs an L3 Subject Matter Expert, you will act as the technical lead for EDR platform management, focusing on policy optimization, platform stability, and advanced troubleshooting across multiple EDR solutions including CrowdStrike. Responsibilities include designing and fine-tuning security policies, optimizing EDR configurations, and ensuring seamless integration with SIEM and SOAR platforms. You will develop custom queries for proactive threat detection, troubleshoot platform-wide performance issues, and ensure regulatory compliance (e.g., PCI DSS, ISO 27001). Additionally, you will conduct root cause analysis (RCA) for platform failures and provide technical leadership to L2 analysts.\r\n\r\n \r\n\r\nKey Responsibilities:\r\n\r\nAct as the escalation point for EDR-related security incidents.\r\nManage and optimize EDR policies and configurations across multiple platforms.\r\nConduct deep-dive analysis of alerts, telemetry, and logs from EDR and related security tools.\r\nEnsure EDR integration with SIEM, SOAR, and other security platforms.\r\nProvide recommendations for security hardening and compliance with industry standards.\r\nAct as the SME for EDR solutions and provide technical guidance to L1 and L2 analysts.\r\nConduct root cause analysis (RCA) and contribute to post-incident review reports.\r\nCollaborate with vendor support teams for issue resolution and product improvements.\r\nProvide technical recommendations to improve endpoint security posture.\r\nEnsure EDR aligns with organizational security policies and regulatory requirements.\r\nDevelop detailed reports on incidents, security posture, and threat trends.\r\nAssist in audits and compliance assessments related to endpoint security.\r\nRequired Skills & Knowledge:\r\n\r\nExpertise in CrowdStrike.\r\nStrong understanding of EDR, XDR, SIEM, and SOAR.\r\nStrong problem-solving and analytical thinking.\r\nExcellent communication and stakeholder management skills.\r\nAbility to lead technical discussions and mentor junior analysts.\r\nAdaptability to fast-changing security landscapes.\r\nFamiliarity with cloud security solutions.\r\nWork Environment & Shift Requirements:\r\n\r\n24x7 support model with rotational shifts (including nights, weekends, and holidays).\r\nAbility to work in a fast-paced, high-pressure Security environment.\r\nExcellent collaboration and coordination with global cybersecurity teams.\r\nPreferred Certifications:\r\n\r\nCrowdStrike Certified Falcon Administrator (CCFA)\r\n
Apply now
Information at a Glance

Why HCLTech?

At HCLTech, you'll supercharge your potential. You'll find your career. And you'll find your spark. All at a place that knows that helping its customers stay on top starts by putting its people first.

HCLTech is a global technology company, home to more than 226,300 people across 60 countries, delivering industry-leading capabilities centered around digital, engineering, cloud and AI, powered by a broad portfolio of technology services and products. We work with clients across all major verticals, providing industry solutions for Financial Services, Manufacturing, Life Sciences and Healthcare, Technology and Services, Telecom and Media, Retail and CPG, and Public Services. Consolidated revenues as of 12 months ending December 2025 totaled $14.5 billion.
23 Benefits At HCLTech, we believe in empowering our employees with comprehensive benefits that support their professional growth and enhance their well-being. When you sign up for a career with us, you gain access to: https://rmkcdn.successfactors.com/147eb21f/a701dca9-f32d-4fc9-9447-6.svg Industry-benchmarked compensation https://rmkcdn.successfactors.com/147eb21f/b0c54381-ddcc-4a33-9b35-9.svg Best-in-class healthcare benefits https://rmkcdn.successfactors.com/147eb21f/b73027be-7aae-4d36-a090-4.svg Personal time off https://rmkcdn.successfactors.com/147eb21f/d5b4fdfd-2e99-4e26-9878-9.svg Maternity and paternity benefits https://rmkcdn.successfactors.com/147eb21f/3d42b0fc-4652-435a-9ece-c.svg Access to skills / higher education programs/resources https://rmkcdn.successfactors.com/147eb21f/aeddeaf2-9e25-4584-ad11-d.svg Discounts on products and services via Benefit Box https://rmkcdn.successfactors.com/147eb21f/a9609a3b-2700-4b3c-9d90-a.svg Participate in CSR programs and live life with a purpose https://rmkcdn.successfactors.com/147eb21f/c6e33851-710f-4634-bd69-f.svg Opportunities to grow and advance your career Note: The benefits listed above vary depending on the nature of your employment and the country where you work. Some benefits may be available in some countries but not in all.