ParadigmIT Technology

As an Endpoint Detection and Response (EDR) Subject Matter Expert (SME), you will be responsible for providing specialized expertise in EDR technologies and solutions to enhance our organization's cybersecurity posture. You will play a pivotal role in designing, implementing, and optimizing EDR strategies to detect, investigate, and respond to cybersecurity incidents across endpoints.

Responsibilities :

- Collaborate with internal teams and clients to understand EDR requirements and objectives.

- Design customized EDR solutions tailored to meet specific client's needs and compliance requirements.

- Lead the implementation and configuration of EDR tools and technologies across client environments.

- Utilize EDR platforms to proactively detect and analyze endpoint threats, including malware, ransomware, and advanced persistent threats (APTs).

- Investigate security incidents, conduct root cause analysis, and provide recommendations for remediation and containment.

- Develop and maintain incident response playbooks and standard operating procedures (SOPs) for EDR-related activities.

- Establish proactive threat hunting programs to identify and mitigate potential security risks and vulnerabilities within endpoint environments.

- Monitor EDR dashboards and alerts to identify anomalous behavior and indicators of compromise (IOCs) across endpoints.

- Stay abreast of emerging cyber threats, attack techniques, and evasion tactics to enhance threat hunting capabilities.

- Optimize EDR configurations and policies to minimize false positives and maximize detection accuracy.

- Conduct periodic reviews and assessments of EDR performance metrics, such as detection rates, response times, and effectiveness.

- Provide recommendations for fine-tuning and enhancing EDR capabilities based on observed trends and insights.

- Serve as a subject matter expert on EDR technologies and best practices, both internally and externally.

- Conduct training sessions and workshops for internal teams and clients to enhance their understanding of EDR concepts and methodologies.

- Contribute to the development of educational materials, white papers, and thought leadership content related to EDR.

Qualifications :

- Bachelor's degree in Computer Science, Information Security, or related field. Master's degree preferred.

- 8+ years experience working in cybersecurity roles with a focus on endpoint security, threat detection, and incident response.

- In-depth knowledge of EDR technologies, platforms, and tools, such as CrowdStrike, Carbon Black, SentinelOne, etc.

- Hands-on experience in designing, implementing, and managing EDR solutions in enterprise environments.

- Strong understanding of cybersecurity frameworks, standards, and regulations (e.g., NIST, CIS, GDPR, etc.).

- Excellent analytical and problem-solving skills, with the ability to analyze complex security incidents and provide timely recommendations.

- Effective communication skills with the ability to convey technical concepts to non-technical stakeholders.

- Relevant certifications such as CISSP, CISM, CEH, or GIAC certifications preferred.