L3 Security End Point Security

L3 Security End Point Security

22

Mumbai

Job Views:

Created Date: 2026-07-17T12:00:00.280Z

Experience: 8 - year

Salary: upto

Industry: 38

Openings: 1

Primary Responsibilities :

Endpoint Detection & Response (EDR)

  • Act as the final technical escalation point for critical endpoint security incidents.
  • Lead investigations involving:
    • Advanced Persistent Threats (APT)
    • Ransomware attacks
    • Insider threats
    • Multi-stage endpoint compromises
  • Design and optimize EDR detection strategies.
  • Define automated response and containment workflows.
  • Review and approve:
    • EDR policies
    • Exclusion rules
    • Automated response actions
  • Conduct Root Cause Analysis (RCA) after major incidents.
  • Drive continuous improvement of endpoint security posture.

Trend Micro Deep Security Administration

  • Own enterprise Trend Micro Deep Security architecture.
  • Define and manage:
    • Anti-malware policies
    • IPS rule sets
    • Integrity Monitoring baselines
  • Ensure compliance with:
    • ISO 27001
    • PCI DSS
    • SOC
    • DPDP
    • Secure Server Build Standards
  • Optimize platform performance and scalability.
  • Support compliance audits and risk assessments.

File Integrity Monitoring (FIM)

  • Develop enterprise FIM governance.
  • Map monitoring policies to:
    • Threat scenarios
    • Compliance requirements
  • Investigate integrity violations.
  • Perform forensic analysis of suspicious file modifications.
  • Reduce false positives while ensuring audit readiness.

Network Access Control (NAC)

  • Serve as SME for Aruba ClearPass.
  • Design posture assessment and enforcement policies.
  • Investigate:
    • Rogue devices
    • Compromised endpoints
    • Access anomalies
    • Non-compliant devices
  • Integrate ClearPass with SIEM platforms.
  • Support Zero Trust Network Access initiatives.

Security Incident Response

  • Lead enterprise incident response activities.
  • Coordinate containment, eradication, and recovery.
  • Perform advanced malware analysis.
  • Support digital forensic investigations.
  • Improve threat detection coverage.

SOC Leadership

  • Provide technical leadership to L0, L1, and L2 analysts.
  • Develop and improve:
    • SOPs
    • Runbooks
    • Escalation procedures
  • Mentor SOC analysts and engineers.
  • Identify detection gaps and recommend improvements.
  • Drive SOC automation initiatives.

Customer & Audit Support

  • Represent the technical team during:
    • Major incidents
    • Executive briefings
    • Security audits
  • Support:
    • RFP responses
    • Security solution architecture
    • Staffing and capability planning
  • Ensure adherence to:
    • SLAs
    • KPIs
    • Statement of Work (SOW)
Experience Requirements:

Educational Qualification

  • Bachelor's Degree in:
    • Computer Science
    • Information Technology
    • Cyber Security
    • Electronics
    • Related Engineering Discipline

Preferred

  • Master's Degree in Cyber Security or Information Security.

Experience Required

  • 8–12+ years in:
    • Cyber Security Operations
    • Endpoint Security
    • SOC Operations
    • Incident Response
    • Enterprise Security Architecture

Preferred Experience

  • Enterprise SOC
  • Managed Security Service Provider (MSSP)
  • Telecom Security Operations

Technical Skills

Endpoint Security

  • Endpoint Detection & Response (EDR)
  • Endpoint Protection Platforms (EPP)
  • Malware Analysis
  • Ransomware Investigation
  • Threat Hunting
  • Endpoint Hardening

Security Platforms

  • SentinelOne
  • Trend Micro Deep Security
  • Trellix
  • Aruba ClearPass
  • SIEM Platforms
  • Threat Intelligence Integration

Security Technologies

  • File Integrity Monitoring (FIM)
  • Network Access Control (NAC)
  • Zero Trust Security
  • Incident Response
  • Digital Forensics
  • Security Architecture

Security Frameworks

  • MITRE ATT&CK
  • Cyber Kill Chain
  • ISO 27001
  • PCI DSS
  • SOC Compliance
  • DPDP

Key Competencies

  • Advanced Threat Detection
  • Incident Command
  • Security Architecture
  • Security Operations Center (SOC)
  • Root Cause Analysis
  • Threat Intelligence
  • Malware Analysis
  • Leadership & Mentoring
  • Crisis Management
  • Customer Communication
  • Risk Assessment
  • Decision Making
  • Analytical Thinking
  • Problem Solving

Preferred Certifications

  • GCED
  • GCIA
  • GCIH
  • Advanced EDR Vendor Certifications
  • Incident Response Certifications
  • Digital Forensics Certifications
Location

: Alliance Recruitment Agency

Share Job :