Endpoint Security Analyst (L2/L3

Job Title: CrowdStrike EDR / Endpoint Security Engineer

Location:

Experience:

Employment Type:

Notice Period:

Shift:

About the Company

Our Client is a global technology consulting and digital solutions company enabling enterprises to reimagine business models, accelerate innovation, and maximize growth. With strong cybersecurity and cloud transformation practices, delivers secure, scalable, and future-ready digital ecosystems across industries.

Job Description

Must Have Skills

• Hands-on experience with

  CrowdStrike Falcon EDR / Insight

• Endpoint telemetry monitoring for

  IOCs and IOAs

• Alert validation, triage, and escalation within

  SOC operations

• Real Time Response (RTR)

  investigation and remediation
• Endpoint threat investigation and incident handling
• Sensor troubleshooting, log collection, and RCA
• Proactive

  Threat Hunting

  using Falcon real-time & historical data
• Strong understanding of endpoint attack techniques and malware behavior
• Experience working in

  24×7 SOC environments

Minimum Qualifications

• Bachelor’s degree in Cybersecurity, Computer Science, IT, or equivalent experience
• 5+ years of experience in

  Endpoint Detection & Response (EDR)

  operations
• Strong knowledge of

  CrowdStrike Falcon platform

• Experience in alert handling, threat investigation, and escalation workflows
• Familiarity with

  ITIL processes

  (Incident, Problem, Change)
• Strong documentation and communication skills

Preferred Qualifications

• CrowdStrike Falcon certifications (CCFA / CCFR / CCFH)
• Experience with

  Threat Intelligence & MITRE ATT&CK mapping

• Exposure to

  SIEM, DLP, Cloud Security, and SOAR platforms

• Experience with

  Adversary Intelligence

  and TTP correlation
• Familiarity with vulnerability management and compliance frameworks
• Experience supporting

  audit, governance, and SLA reporting

Responsibilities

• Continuously monitor endpoint telemetry for

  Indicators of Attack (IOAs)

  and

  Indicators of Compromise (IOCs)

• Validate, triage, and escalate Falcon Insight alerts to

  L2/L3 SOC teams

• Use

  CrowdStrike RTR

  to investigate and remediate endpoint threats without disrupting business operations
• Conduct

  proactive threat hunting

  using Falcon historical and real-time data
• Correlate endpoint behavior with known adversary

  TTPs

  using CrowdStrike Adversary Intelligence
• Troubleshoot sensor-related issues, perform log analysis, and conduct root cause analysis
• Raise and manage

  CrowdStrike support cases

  for unresolved technical issues
• Maintain documentation for known issues, fixes, and deployment best practices
• Collaborate with Threat Intelligence teams to enhance detection logic and response workflows
• Participate in governance forums, SLA reviews, and operational reporting
• Contribute to executive dashboards and audit documentation on endpoint security posture
• Ensure compliance with internal security policies and regulatory requirements
• Work closely with

  SOC, SIEM, DLP, Cloud Security, and CDC teams

• Support

  automation playbooks, SOAR integrations, and GenAI-driven enrichment initiatives

Important Note (Please Read Before Applying)

Do NOT apply if:

• You have less than

  5 years of hands-on EDR / CrowdStrike experience

• You have not worked in a

  24×7 SOC environment

• You lack experience in

  RTR, threat hunting, or incident response

• You are not flexible for

  night/weekend shifts

• You do not have exposure to

  endpoint security operations

Apply ONLY if you meet all the above criteria.

Irrelevant or non-matching profiles will not be considered.