EY TC-CS-Cyber Detection Response-EDR-Senior 

India, Karnataka, Bengaluru 

833156678

KEY Capabilities:

• EDR Solution Design: Collaborate with clients and internal stakeholders to assess their cybersecurity needs and design EDR solutions tailored to their specific requirements.
• Deployment and Configuration: Installation \ configuration of NGAV and EDR\XDR solutions like CrowdStrike Falcon , Microsoft Defender for Endpoint, Carbon Black etc.. ensuring seamless integration with existing security infrastructure.
• Policy Creation: Develop and implement EDR policies and rules to detect and respond to security incidents effectively.
• Monitoring and Analysis: Continuously monitor endpoint security data and analyze alerts and events to identify potential threats and anomalies.
• Incident Response: Lead or assist in incident response activities, including investigation, containment, and remediation of security incidents on endpoints.
• Documentation: Maintain comprehensive documentation of NGAV and EDR\XDR configurations, policies, and procedures.
• Advise customers on best practices and use cases on how to use this solution to achieve customer end state requirements.
• Training and Knowledge Sharing: Provide training and knowledge transfer to client teams and internal staff to enhance their understanding of EDR technologies and best practices.
• Languages : Strong hand-on experience in development language as Python
• Excellent teamwork skills, passion, and drive to succeed and combat Cyber threats
• Experience in any SIEM technology Elastic SIEM, Splunk, IBM QRadar, Sentinel, etc.) will be an additional advantage

Qualification & experience:

• • Bachelor's or Master’s degree with sound technical skills
  • Proven experience in implementing and managing Next Generation Antivirus (NGAV) and Endpoint Detection and Response (EDR)\XDR technologies, such as CrowdStrike Falcon, Microsoft Defender for Endpoint, Carbon Black etc.
  • Knowledge of information security standards (ISO, NIST, PCI, GDPR etc.) (Good to have)
• Experience in Malware Analysis and Incident Response (Good to have)
  • Experience on Microsoft 365 Defender suite would be an advantage.
  • Excellent problem-solving and analytical skills.
  • Effective communication and teamwork skills.
  • Certification - CCSA, CEH, CISSP or NGAV, EDR\XDR-specific certifications are preferred

• Willing to learn new technologies and take up new challenges.

Ideally you should also be:

• Willing to work from ODC 5 days a week in rotational shift.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.