Endpoint Engineer

Help AG is looking for an Endpoint Engineer with expertise in FireEye HX Endpoint Detection & Response (EDR) and FortiSOAR platform. As a member of the Managed Security Services (MSS) team, the incumbent will be responsible for managing EDR infrastructure and addressing endpoint-related issues. The ideal candidate will have experience working within a Security Operation Center (SOC) and familiarity with SOAR Playbook/Use case/Workflow.

Responsibilities:

• Provide professional experience as a Security Engineer, EDR/SOAR Engineer.
• Hands-on and management experience with FireEye endpoint security.
• Monitor the operational/performance status of Windows/Mac/Linux endpoints, including configurations and troubleshooting.
• Monitor operational/performance status of network communications to/from endpoints and troubleshoot as necessary.
• Utilize operating system command-line utilities and PowerShell.
• Manage a multi-tenant EDR environment and maintain the FireEye HX environment.
• Respond effectively to all incidents related to FireEye environments/infrastructure.
• Plan and participate in Cybersecurity improvement projects.
• Expertise in FortiSOAR implementation and development of automation and orchestration use cases.
• Integration with various solutions (SIEM, Ticketing Systems, Security Devices).
• Develop and deploy Playbooks, implement security controls and mechanisms.
• Create integration solutions with web service APIs using REST/JSON.
• Collaborate with the Security Information and Event Management (SIEM) Team and other security product owners to design end-to-end automation solutions.
• Work with Incident Response teams to develop correlation rules and incident response workflows/playbooks.
• Familiarity with networking, network protocols, and security infrastructures.
• Experience with scripting languages such as Python, PowerShell, and Bash.

Qualifications & Skills:

• Bachelor's degree or equivalent and 6-8 years of related experience.
• Prior experience with Endpoint Detection & Response (EDR) products.
• 2 years experience in FireEye endpoint security.
• Expertise in SIEM tools such as LogRhythm and Splunk.
• 3+ years of professional experience in the cybersecurity field.
• Experience with FortiSOAR (Security Orchestration and Automation).
• Relevant professional security certifications (e.g., Security+, GCIA, CEH, CISSP).
• Previous experience working in a Security Operations Center.

Benefits:

• Health insurance with leading global providers for medical insurance.
• Career progression and growth through challenging projects.
• Employee engagement and wellness activities throughout the year.
• Excellent learning and development opportunities.
• Inclusive and diverse working environment.
• Flexible/Hybrid working environment.
• Annual flight tickets to the home country.
• Open door policy.