Job Description for Endpoint Security

• Role: Endpoint Security SME
• Experience: 8 to 10 years of experience working on Network Security
• Location: Delhi/ NCR
• Product Certification MacAfee EPO Professional /Trellix

Required Candidate profile

• Overall 8-10 years’ experience in network security with at least 5 years in managing endpoint solutions
• Proficiency with management endpoint security solutions.
• Experience in working with Windows, Linux, Unix environments
• Hands-on experience in commissioning and Implementation of ENDPOINT SECURITY solutions and integrating with various management and authentication authorization tools (email, AD, IAM, SIEM)
• Experience in automating processes using scripting, configuration (SOAR) tools
• Experience in managing policies and exceptions
• Experience in packet capture, analysis, and troubleshooting tools
• Product knowledge of McAfee/ Trellix, TrendMicro or Sentinelone etc.
• Incident, problem, service request management, change management, configuration management &capacity management of endpoint security solution.
• Proactively utilize network monitoring tools to isolate events before service degradation occurs
• Supporting incident monitoring and incident analysis/response initiatives
• Coordinate with users to ensure timely and satisfactory resolution for any trouble tickets, troubleshooting layers 1, 2, and 3 of the OSI Model.
• Troubleshooting network, transport, session, presentation and applications layers
• Conducting daily performance checks on devices, periodic audits and compliance
• Performing immediate troubleshooting as the situation dictates for any network outages as reported by users, sensors, and/or operational personnel
• Implement, and maintain network security policy, standards, and procedures.
• Deploying and maintaining access and security policies for endpoint security solutions.
• Maintaining servicelevels as well as oversight ofthe day-to-day configuration, administration and monitoring of the network security infrastructure in a 24/7.
• Co-ordination with OEMs for TAC support, RMA, replacement & and reconfiguration of endpoint security.
• Creating technical documentation, as-built network diagrams, inventory control documentation, and security documentation.
• Co-ordinate helpdesk team, other IT support teams, and application support teams to jointly troubleshoot and fix the high priority/severity incidents.
• Investigate, isolate, and resolve endpoint security incidents with RCA.
• Designing and implementing endpoint security solutions for DC/DR/Cloud and Branch office environments.
• Create SOP/Run book and update knowledgebase in ITSM tools.
• Work to automate and integrate the tools with REST API/SDK with security dashboard, and Infosec tools (AD, IDAM, PAM, SIEM, SOAR, etc.)
• Closure of compliance and audit points as per the agreed timelines.
• Patch updates, and upgradation as per the Bank's compliance and audit requirements
• Should be able to Lead and mentor L1 Engineers team.
• Must be comfortable in reading packet captures and analysis (Wireshark/Pcap).
• Excellent verbal and written communication skills
• Demonstrated success in managing, analyzing, and solving complex issues
• Ownership of their technology.
• Ensure Ticket closure in SLA and follow up for escalated tickets
• SLA reporting for respective technology.