Endpoint Security Analyst - Hybrid - NYC

Overview:

Overview

We are seeking a skilled Cybersecurity Engineer with expertise in endpoint security technologies to join our team. The ideal candidate will be responsible for deploying, managing, and optimizing security tools across enterprise endpoints. This role focuses on ensuring robust protection against threats through advanced solutions such as Antivirus (AV), Endpoint Detection & Response (EDR), Cyber Asset Attack Surface Management (CAASM), and Vulnerability Management platforms.

Key Responsibilities

• Endpoint Security Deployment & Management
• Implement and maintain enterprise-grade AV and EDR solutions across all endpoints.
• Configure policies, rules, and alerts to ensure optimal security posture.
• Monitor and troubleshoot endpoint security tools for performance and compliance.
• Experience with Windows Defender Attack Path remediation and exposure management
• Vulnerability Management
• Conduct regular vulnerability scans and assessments.
• Collaborate with IT and application teams to remediate identified vulnerabilities.
• Maintain vulnerability management dashboards and reporting.
• Cyber Asset Attack Surface Management (CAASM)
• Integrate CAASM tools to identify and manage all assets within the environment.
• Ensure accurate asset inventory and risk prioritization.
• Incident Response & Threat Hunting
• Investigate and respond to endpoint security alerts and incidents.
• Perform root cause analysis and recommend preventive measures.
• Perform investigation using SIEM tool such as Splunk
• Policy & Compliance
• Develop and enforce endpoint security standards and best practices.
• Ensure compliance with regulatory and organizational security requirements.
• Automation & Optimization
• Identify opportunities to automate repetitive security tasks.
• Optimize configurations for performance and security effectiveness.

Required Skills & Qualifications

• Bachelor's degree in Computer Science, Cybersecurity, or related field (or equivalent experience).
• 5+ years of experience in cybersecurity engineering with a focus on endpoint security.
• Must have hands-on experience with AV and EDR platforms (e.g., CrowdStrike, SentinelOne, Microsoft Defender).
• Familiarity with CAASM tools and vulnerability management solutions (e.g., Tenable, Qualys).
• Strong understanding of Windows, macOS, and Linux endpoint environments.
• Knowledge of incident response processes and threat detection techniques.
• Excellent problem-solving and communication skills.

Preferred Qualifications

• Relevant certifications (e.g., CISSP, CEH, CompTIA Security+).
• Experience with scripting and automation (PowerShell, Python).
• Exposure to SIEM platforms and integration with endpoint tools.

Apply tot his job Apply To this Job