RemoteLeaf Logo
Log in Sign up

MEDR Threat Engineer US work hours

1 week ago
India
Full-time
Mid Level
Security Engineer
DevOps and Infrastructure
Carbon Black Elasticsearch Linux macOS Network Security SIEM Splunk
Apply Now
Proficio

Proficio

Proficio specializes in providing managed detection and response services, utilizing advanced technology and 24/7 security monitoring to protect medium to large organizations from cyber threats while ensuring compliance and bridging security gaps.

Professional Services
51-250
Founded 2010
$13M raised
View All Jobs 2

Description

  • Act as the subject matter expert for initiatives that improve EDR visibility, detection, and prevention across Windows, macOS, and Linux.
  • Develop and enhance SOAR workflows and playbooks integrated with EDR systems for incident response and threat management.
  • Design and implement automated orchestration solutions to address complex security challenges.
  • Define and maintain the strategy and roadmap for Carbon Black, CrowdStrike, and SentinelOne detection capabilities.
  • Collaborate with SOC and Managed/Hosted SIEM teams to analyze threat patterns and attack trends.
  • Identify unmet customer needs, define use cases, and improve the functional capabilities of the Managed EDR offering.
  • Maintain and administer endpoint security management tools such as antivirus, DLP, and web/spam filtering solutions.
  • Assist customers with viruses, system vulnerabilities, and other security threats.
  • Improve detection and response efficiency for cyber incidents, alerts, and detections.
  • Escalate detections, incidents, and alerts to customers using ITSM/ITIL tools.

Requirements

  • 4+ years of professional IT experience.
  • 3+ years of experience deploying, configuring, or maintaining enterprise EDR solutions such as CrowdStrike Falcon, Microsoft Defender, or SentinelOne.
  • Additional experience with Cisco Secure Endpoint and Sophos is a plus.
  • 3+ years of experience in EDR and/or antivirus, with malware analysis, research, investigation, and response highly desirable.
  • 1+ years of systems administration experience, including troubleshooting, installation, performance monitoring, and security upgrades.
  • Knowledge of network security architecture concepts, including topology, protocols, components, and principles.
  • Knowledge of enterprise operating system configurations and management tools used for EDR deployment and administration.
  • Experience working in a SOC environment, including incident response, vulnerability scanning, threat hunting, network monitoring/log management, or compliance management, is preferred.
  • Experience with SIEM, threat intelligence platforms, or network monitoring tools is preferred.
  • Experience triaging security events in a SOC using data from enterprise security solutions.
  • Knowledge of intrusion detection methodologies for host- and network-based intrusions.
  • Ability to integrate cybersecurity data using enterprise or custom aggregation and analysis tools such as Splunk and Elastic.

Benefits

  • Structured training and a roadmap for success.
  • Meal, gym, internet, and other reimbursement programs.
  • Opportunity to work in a progressive organization.
  • Experience in one of the hottest IT industries today.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

JMA Wireless

IT Infrastructure Security Operations Engineer

JMA Wireless 251-1K Wireless Telecommunication Services

JMA is hiring an IT Infrastructure Security Operations Engineer in Syracuse, NY to own the day-to-day security posture of its enterprise infrastructure and keep Windows and Linux environments continuously hardened and audit-ready.

United States Full-time Senior Security Engineer
$100k-$120k
Active Directory Ansible Bash Linux PowerShell Puppet Python SIEM
39 minutes ago
Sumo Logic

Staff Threat Research Engineer

Sumo Logic 251-1K Internet Software & Services

Sumo Logic’s Threat Labs is hiring a staff-level threat researcher to turn threat intelligence and original adversary research into high-quality detections for its SIEM platform.

United States Full-time Lead Research Scientist Security Engineer
$162k-$190k
AWS Azure Cybersecurity GCP Machine Learning PowerShell Python SIEM SOC
2 hours, 56 minutes ago
Bugcrowd

Manager, Engineering (Identity and Access Management)

Bugcrowd 1K-5K Internet Software & Services

Bugcrowd is hiring a Software Engineering Manager to lead its Identity and Access Management team in building secure, scalable authentication, authorization, and identity services across the company’s product ecosystem.

United States Full-time Lead Engineering Manager Security Engineer
$138k-$213k
Agile AWS Azure Encryption GCP Go Java JWT Node.js OpenID Connect Ruby SAML Scrum
6 hours, 19 minutes ago
Arize AI

DevSecOps Engineer (TypeScript & Agentic AI)

Arize AI 51-250 IT Services

Arize AI is hiring a remote IT Support Specialist to support Mac-only endpoints, cloud systems, and compliance operations for a distributed team.

United States Full-time Junior Security Engineer Systems Administrator
Confluence GitHub JIRA TypeScript
12 hours, 55 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers