Job Title:
Endpoint Security Administrator / Engineer / Sr. Consultant
Job Summary:
Join our Endpoint Security Engineering team as an Endpoint Security Engineer/ Sr. Consultant. In this role, you will be responsible for the design, deployment, configuration, management, and continued optimization of the
CrowdStrike Falcon Insight
platform and modules across the enterprise. The ideal candidate brings hands-on experience with relevant modules, strong endpoint management skills, and the ability to partner with cross-functional technical teams to enhance security posture, compliance, and operational efficiency.
Key Responsibilities:
Design, Deploy, configure, and maintain the above platforms across all endpoints in the organization.
Design, implement, and manage platform modules (e.g., Deploy, Performance, Asset Discovery, Integrity Monitor, Patch, Comply, Enforce).
Develop and execute custom queries, SBOM reports and scripts (Sensors, Packages, Actions) to gather endpoint data, audit compliance, or automate remediation and agent upgradations.
Monitor console activities, respond to alerts, and troubleshoot issues.
Collaborate with security, compliance, and infrastructure teams to improve visibility, deploy, performance, patch management, threat response, and certificate manager
Create and maintain documentation for processes, configurations, and best practices.
Stay up-to-date with software releases, security trends, and endpoint management practices.
Update policies and definitions in Antivirus on a daily basis or as needed.
Perform manual malware/virus eradication, if needed, following malware removal Standard Operating Procedures (SOPs).
Perform detailed analysis, triage, escalation, and remediation activities based on applicable SOPs.
Assist Cyber-Risk Defense Center (CDC) teams in investigating security alerts and assisting in containment activities.
Required Skills & Experience:
Hands-on experience administering
CrowdStrike EDR
in medium-to-large enterprise environments.
Other similar EDR tools (MS Defender, Tanium etc.) platform experience will be a plus
Working knowledge of EDR modules (e.g.: Deploy, Performance, Asset, Patch, Comply, Enforce, Discover, Reveal, and Threat Response).
Experience scripting in WMI, PowerShell, Python, or other languages to support endpoint management.
Strong understanding of Windows, Mac, and/or Linux operating systems.
Familiarity with endpoint security, compliance, and incident response processes.
Excellent troubleshooting and analytical skills for endpoint-related incidents.
Effective communication and documentation abilities.
