Ampstek | Endpoint Security Engineer Cyber Security

Need Locals for Face to Face interview.Position: Enterprise Security Admin L3 Location: Jersey City NJPrimary Responsibilities: Provide administration and operational support for endpoint security technologiesDocument all product related details in runbooks, design, andor configuration documentsCarry out regression testing and analysis with any endpoint security technologiesFollow release management processes and best practices for deployment, enhancements, and upgrades.Work closely with Security operations center and other security groups during investigations.Demonstrate mastery in log file analysis, fault isolation and diagnosticassessment actions including root cause analysis, followed by the determination and self-directed execution of corrective actions.Drive automation efforts to continuously monitor and maintain security posture of operating systems.Maintain metrics and supporting analytics on System and endpoint Security.Provide secondary assistance and operational support with EDR (Endpoint Detection and Response), Anti-virus solutionsStay current on endpoint security best practices, active threats and mitigation strategies.Draft & execute the strategy to enhance the investments in current technologies and drive continuous innovation with new ideas to improve and mature endpoint security posture.Aggregate data across disparate platforms to design and develop alerting.Manage a portfolio of application-related projects and directly manage select projects within that portfolio.Qualifications:Demonstrable and hands experience with endpoint security technologiesHands on experience with DLP technologies is a MUST for this positionDemonstrated in-depth understanding of operating system (OS) internals, the mechanics of OS exploits with preventive and detective controlsDemonstrated experience in investigating security incidents with ability to analyze logs to uncover details of the compromise, systems involved, threat techniques etc.Experience with scripting like Python, PowerShell etc., is highly preferredKnowledge of Splunk search language is preferred.Experience in creating trending, metrics, and management reportsStrong interpersonal & communication skills working with remote peers over IM, phone & video.Experience working within the Financial Services Industry preferredDemonstrated ability to provide technical direction to other peer staff members, and to train new junior staff members on the security teamAbility to elicit confidence and build rapport across multiple disciplines.Self-motivated; able to learn on own initiativeStrong skills in organizing workflow, ideas & materialsExcellent documentation skillsSecurity certifications like Ethical Hacking or other specialized endpoint security certifications are preferredB.S in Technology or Related area (proven experience can be used as a substitute).

Created: 2025-01-01