Key skills
Cyber SecurityLinuxMacOSPythonSplunkBashPowerShellCommunicationNetwork Security
About this role
Role Overview
- Deliver expert-level EDR product support, serving as the primary technical resource for internal teams and external customers.
- Provide deep technical expertise across EDR platforms, including deployment, configuration, tuning, optimization, and troubleshooting.
- Act as an escalation point for complex EDR-related incidents, alerts, and investigations.
- Partner directly with customers to provide tailored recommendations for improving security posture within their environments.
- Understand customer business risk and recommend appropriate security controls to reduce exposure and strengthen overall cybersecurity maturity.
- Communicate technical findings clearly and effectively to both technical and non-technical stakeholders.
- Conduct routine EDR platform health checks to identify gaps, misconfigurations, coverage issues, and optimization opportunities.
- Manage EDR platform versioning and ensure deployments remain current, supported, and operationally effective.
- Monitor platform performance and proactively recommend improvements to enhance detection and operational efficiency.
- Develop, maintain, and improve Standard Operating Procedures (SOPs) related to EDR operations and incident workflows.
Requirements
- Diploma or bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a related field, and/or equivalent hands-on experience.
- Minimum of 4+ years of progressive cybersecurity experience with demonstrated growth in technical scope and responsibility.
- Proven enterprise-level system administration experience across Windows, macOS, and Linux environments.
- Hands-on experience administering and supporting EDR platforms such as CrowdStrike Falcon, SentinelOne, Microsoft Defender for Endpoint, or comparable endpoint security technologies.
- Strong understanding of cybersecurity fundamentals, including malware analysis concepts, endpoint protection, network security fundamentals, and incident response processes.
- Experience with scripting or automation using Python, PowerShell, Bash, or similar scripting languages.
- Familiarity with deception technologies such as Thinkst Canary.
- Exposure to Network Traffic Analysis (NTA) technologies such as Corelight.
- Experience or familiarity with SIEM/log analysis platforms including Splunk, Microsoft Sentinel, Palo Alto XSIAM, Chronicle, or other next-generation SIEM technologies.
- Strong analytical, troubleshooting, and problem-solving skills with attention to detail.
- Excellent written and verbal communication skills with the ability to communicate effectively to both technical and business audiences.
Tech Stack
- Cyber Security
- Linux
- MacOS
- Python
- Splunk
Benefits
✔ Medical Insurance
- Employee + dependents covered ✔ Life Insurance
- Protection for what matters most ✔ Retirement Match Program
- We invest in your future ✔ Hybrid Work Model
- 2–3 days in office ✔ Maternity & Paternity Leave
- Time for the moments that matter ✔ Paid Time Off
- PTO + sick & casual leave ✔ Bereavement & Volunteer Time
- Give back to your community ✔ Professional Development
- Reimbursement program ✔ LinkedIn L&D Platform
- Thousands of courses at your fingertips ✔ Mobile Phone Reimbursement
- Stay connected, on us