Job Summary
Job Summary:
We are seeking a highly experienced Level 3 Endpoint Security Engineer specializing in Encryption technologies, particularly Microsoft BitLocker. The candidate will be responsible for designing, implementing, and managing enterprise-wide encryption solutions to ensure data protection, compliance, and endpoint security posture.
Key Responsibilities
Key Responsibilities:
- Lead investigation of high-severity and complex security incidents escalated from L1/L2
- Perform deep-dive analysis across SIEM, EDR, network, and system logs
- Conduct advanced threat hunting based on TTPs, IOCs, and MITRE ATT&CK framework
- Develop and tune detection rules, use cases, and correlation logic
- Perform root cause analysis (RCA) and provide remediation strategies
- Integrate SOC monitoring tools with SOAR and automation platforms
- Improve detection coverage and reduce false positives
- Lead incident response bridge calls and coordinate with cross-functional teams
- Generate detailed reports on incidents, trends, and security posture
- Mentor L1/L2 analysts and provide technical guidance
Skill Requirements
Required Skills:
- Strong expertise in SOC monitoring and SIEM tools
- Deep understanding of incident response lifecycle
- Knowledge of threat intelligence, MITRE ATT&CK, and attack techniques
- Experience in log analysis and event correlation across multiple sources
- Hands-on experience with EDR, IDS/IPS, DLP, and firewall data
- Strong analytical, investigative, and troubleshooting skills
Other Requirements
Good to Have:
- Experience with SOAR tools (Tines, Cortex XSOAR)
- Knowledge of scripting (Python, PowerShell) for automation
- Experience in cloud security monitoring (Azure/AWS)
Certifications (Preferred):
- GCIH / GCIA / CISSP / CEH
Soft Skills:
- Strong leadership and stakeholder management
- Excellent communication and reporting skills
- Ability to handle high-pressure situations
- Mentoring and team development