As a McAfee Endpoint Security Engineer, you will be responsible for assisting teammates with agent and agentless installations on servers and user endpoints. Responsibilities will include the following technologies: ePO MOVE EN, FIM, EDR, Database Encryption
Primary responsibility is for ensuring the security tools like McAfee Change Control (MACC), Endpoint Security (ENS) for Windows and Linux, ePolicy Orchestrator (ePO) DAT, Endpoint Deployment, Package Management and Vuln Management Tools (Nessus, Burp Suite) are operationally maintained
Work with Security Analyst and Security Architects to verify security is implemented properly, and new network and computing environments meet McAfee security standards and policies.
Work with a dedicated Cloud Core Services DevOps team, or from other McAfee BUs as needed, to improve security and awareness within the MVision authorization boundary of operations
Work with other members of the Security Operations Team dedicated to assisting in ensuring visibility and monitoring capabilities are available, for root causing analysis on security-related events and threat hunting exercises
In addition to endpoint security functions - Assist with investigations of network and hosts/endpoints for malicious activity, to include analysis of event data, and assist in efforts to detect, confirm, contain, remediate, and recover from attacks;
Assist in response to global security incidents including coordination and leadership during security incident and malware outbreaks
Review network and system logging standards to determine compliance with security standards and frameworks for onboarding new projects
Collect and remediate executive summaries on vulnerability metrics for product deployments and control gap assessments
Contribute to overall Information Security processes, procedures, policies, standards, architecture, and supporting documentation.
6 - 10 years of cybersecurity experience managing endpoints, incident management, securely hardening and maintaining security tools
McAfee MOVE, Change Control, ENS and ePO deployment experience are required. Experience with: Near real-time monitoring, tuning, optimization, and troubleshooting.
Experience working with security projects associated with NIST 800-53 (Moderate, High &IL-4/5) Control Framework
Experience working with security incident response / threat mitigation or containment practices
Experience with administration / management of Windows 2016, Linux (Amazon Linux v2) OS
Should possess 1 or more certifications – CISSP, SANS GIAC, Vendor Certifications