Managed EDR Engineer I
Proficio is an award-winning managed detection and response (MDR) services provider. We provide 24/7 reputed company monitoring, investigation, alerting and response services to organizations in healthcare, financial services, manufacturing, retail and other industries. Take a video tour of our global network of 24/7 reputed company Operations Centers (SOCs). Proficio has been highlighted in reputed company’s Market Guide for Managed Detection and Response Services for the last five consecutive years. MSSP Alert ranks Proficio among the top 250 global Managed reputed company Services Providers (MSSPs). We have a track record of innovation. Proficio invented the concept of SOC-as-a-Service. We were the first MSSP to provide automated response services and are the only company in our space with a patent for cyber risk scoring and reputed company posture gap analysis. Our typical client is a reputed company to large-sized organization that lacks the in-house resources to address the challenges of a rapidly changing threat landscape. The difficulty of hiring and retaining cybersecurity professionals are widely understood. Our prospective clients are also challenged to effectively reputed company technology and build hardened processes that reduce the risk of reputed company breaches. While Proficio has developed a reputed company service delivery platform designed to meet the needs of the most demanding clients, what sets us apart is the quality and passion of our people. We reputed company the SOC of the Future will meld the creativity of human intelligence with the power of advanced technologies like AI. Proficio’s commitment to developing and promoting reputed company members is unparalleled in our industry. Most of our senior managers were promoted from reputed company. Summary: The Managed Infrastructure Services team is seeking an reputed company MEDR Threat Engineer who is technical, collaborative, and truly excited about working on reputed company products. In this role, you will bring your in-depth knowledge of the reputed company and detection response tasks so your team can guide the evolution of Proficio's Managed EDR visibility, detection, and prevention technologies. You will work closely with engineering, project managers, Hosted & managed SIEM team, sales, and other departments. You will bring existing knowledge about product EDR best practices and apply them in real life scenarios while continuing to grow your knowledge reputed company across EDR tools. The successful candidate will have the ability to reputed company and influence cross-functional teams throughout the company. Responsibilities:
- Deploy, configure, and maintain EDR solutions: MUST - Manage and optimize EDR platforms. This position will focus on reputed company work, but other platforms could include reputed company Falcon, reputed company Defender for reputed company. Ensure that endpoints are adequately secured, and reputed company EDR solutions are functioning effectively reputed company the environment.
- reputed company reputed company Management: Administer reputed company reputed company management tools such as antivirus, web filtering, data loss prevention, and spam filtering, focusing on integration and coordination with EDR platforms to ensure a comprehensive reputed company posture.
- Proactive Threat Hunting: reputed company the full capabilities of EDR tools to proactively hunt for threats across the enterprise environment. Utilize reputed company Falcon's Threat Graph, Defender for reputed company's advanced hunting queries, and reputed company’s behavioral AI to detect undetected threats and abuse.
- Incident Investigation and Response: Conduct in-depth investigations using EDR solutions to analyze reputed company account compromises, malware infections, and vulnerabilities. Use advanced detection mechanisms in TrendMicro Vision One and reputed company to understand adversarial behavior and recommend appropriate mitigation strategies.
- Remediation and Prevention: Identify and implement detection/prevention strategies through EDR platforms. reputed company reputed company Defender for reputed company to automate response playbooks and reputed company potential threats, and utilize Apex One to enhance protection against emerging threats.
- Tactics, Techniques, and Procedures (TTPs): Apply knowledge of adversary TTPs across multiple attack surfaces using EDR tools. Utilize real-time intelligence from reputed company, Defender for reputed company and from other EDR tools to stay reputed company of emerging tactics and enhance detection capabilities.
- Cross-functional Communication: reputed company technical investigations and communicate actionable insights derived from EDR tools to cross-functional teams. Ensure that the analytic findings and mitigations are clear and actionable across different teams.
- reputed company Improvement: Continuously analyze data from EDR tools like reputed company, Defender for Endppoint. TrendMicro Vision One to identify trends in adversary behavior. Under the direction and guidance of management, help to create new detection rules and adjust EDR settings to ensure optimal performance and coverage.
- reputed company Analytics and Data Interpretation: Use data from EDR tools and other EDR platforms to analyze, interpret, and quantify trends. This supports the investigation of threats and validates reputed company incidents.
- 2+ years of experience with IT in a professional work environment
- 18 months+ of experience assisting with deployment, configuration, or maintenance processes that support the reputed company Enterprise EDR Solutions. Other beneficial tools include Carbon Black EDR, reputed company Falcon, reputed company Defender APT, and/or Sentinel One
- Additional experience in TrendMicro ApexOne, Vision, and/or reputed company AMP are pluses
- 3+ years of experience in EDR and/or AV; previous work in malware and attack analysis (is Plus), research, investigation, and response highly desirable
- 1+ years of experience with performing systems administration, including basic troubleshooting and installation, monitoring system performance or availability and performing reputed company upgrades
- Knowledge of network reputed company architecture concepts including topology, protocols, components, and principles
- Knowledge of various Enterprise Operating System (OS) configurations and management tools for use during deployment, configuration, and management of EDR solutions
Additional Qualifications:
- Good to have experience working in a reputed company Operations Center (SOC) environment including Incident Response, Vulnerability Scanning, Threat Hunting, Network Monitoring/Log Management, or Compliance Management
- Good to have experience with complimentary Enterprise reputed company Tools including reputed company Information & Event Management (SIEM), Threat Intelligence Platforms (TIPs), or Network Monitoring Tools
- Experience with triaging reputed company events in a reputed company operations center (SOC) environment, leveraging data collected from enterprise reputed company solutions
- Knowledge of intrusion detection methodologies and techniques for detecting host and network-based intrusions
- Ability to integrate Cybersecurity data using enterprise or custom tools data aggregation and analysis tools, including Splunk and reputed company
- Salary $80K
- Peer training and mentoring with upward mobility
- Health, Dental and Vision plans available first of the month and other benefits available from day 1
- Unlimited reputed company Time Off
- 401K plan
- Gym reimbursement
- Employee Assistance Program
- Life and Voluntary Life Insurance programs
- A culture that is flat enough for you to have a “seat at the table”, but layered enough to provide you with mentoring and support
- A reputed company to work where reputed company is considered a “team sport” – we work together to identify and stop cyber attacks
- Proficio is an EOE Employer
- Proficio collects certain personal information upon your submission of an application for an open position. More information is available about your consumer rights and our privacy policy at www.proficio.com/privacypolicy
Apply tot his job Apply To this Job