Job Description: We are seeking a proactive and detail-oriented Endpoint Security Engineer to manage and enhance our endpoint protection technologies. This role focuses on deploying, tuning, and monitoring Microsoft Defender products (such as Defender for Endpoint, Defender for Identity, Defender for O365 and Defender Antivirus ) with a strong emphasis on SCCM\Intune platform expertise to ensure comprehensive visibility, compliance, and rapid threat response. Key Responsibilities: Administer, monitor, and optimize Microsoft Defender suite deployments across the enterprise . Serve as an escalation point for complex endpoint and infrastructure-related incidents. Design and manage endpoint detection and response (XDR) policies using Defender for Endpoint. Develop threat-hunting hypotheses and implement new detection logic in Defender XDR. Provide mentorship and guidance to Tier 1/2 SOC analysts. Develop and maintain configuration baselines, health checks, and compliance reporting using Tanium. Investigate and remediate security alerts and endpoint incidents. Collaborate with SOC and IR teams for threat hunting, forensic analysis, and response automation. Document processes, configurations, and incident response procedures. Automate compliance and remediation workflows using PowerShell and Intune configuration profiles. Manage and monitor Microsoft Defender for Office 365 to protect users from phishing, malware, and other threats across Exchange, SharePoint, OneDrive, and Teams. Requirements: 3 5 years of experience in endpoint security or a related cybersecurity role. Deep knowledge of Microsoft Defender for Endpoint, Defender for Identity, and related Defender XDR tools. Strong experience with Intune platform. Experience with scripting (PowerShell,Python) for automation and remediation. Familiarity with SIEMs (e.g., Splunk, Sentinel) and EDR integrations. Strong analytical and troubleshooting skills.
We are looking for a highly skilled Tanium Platform Engineer with hands-on experience managing and optimizing a wide range of Tanium modules, including Enforce, Threat Response, Comply, Interact, Patch, Deploy, Certificate Manager, Performance, Investigate, and Impact. The ideal candidate will have a strong scripting background (PowerShell, Python, Shell, and VBS) and the ability to automate, orchestrate, and scale endpoint security and operations across a global enterprise environment. Key Responsibilities: Manage, administer, and optimize Tanium modules, including but not limited to: Enforce : Configure and apply security baselines and policies. Threat Response & Investigate : Conduct real-time threat hunting, forensics, and incident response. Comply : Monitor and report endpoint compliance against CIS, NIST, and custom baselines. Patch & Deploy : Design and execute patch deployment strategies and software rollouts. Certificate Manager : Track, manage, and alert on endpoint certificates across the enterprise. Performance & Impact : Monitor and analyze endpoint performance metrics and operational impact. Interact : Build and optimize Tanium sensors, packages, and saved questions for visibility and control. Develop custom Tanium content (sensors,packages, dashboards) tailored to business and security requirements. Automate endpoint management tasks using PowerShell, Python, Shell, or VBScripts. Integrate Tanium with other tools (SIEMs, ITSM platforms, configuration management, XDR tools). Collaborate with security, infrastructure, and endpoint teams to support compliance, incident response, and operational efficiency. Provide documentation, training, and knowledge transfer to stakeholders and internal teams. Support lifecycle upgrades and health of Tanium infrastructure and endpoints. Required Qualifications: 5+ years of experience in IT security or endpoint management, with at least 3 years of direct Tanium platform experience. Deep knowledge and hands-on experience with multiple Tanium modules listed above. Proficiency in scripting languages: PowerShell, Python, Shell (Bash), and VBScript. Strong experience building and maintaining custom sensors, packages, and scheduled actions in Tanium. Familiarity with endpoint hardening standards, vulnerability management practices, and threat hunting methodologies. Experience with enterprise OS platforms (Windows, macOS, Linux). Excellent troubleshooting, documentation, and collaboration skills. Preferred Qualifications: Experience with Microsoft Defender for Endpoint and integration with Tanium. Familiarity with Intune, SCCM, JAMF, or other endpoint management platforms. Experience integrating Tanium with ServiceNow, or Sentinel. Tanium Certified Operator or Tanium Certified Administrator certification.
UltraViolet Cyber is a leading platform-enabled unified security operations company providing a comprehensive suite of security operations solutions. Founded and operated by security practitioners with decades of experience, the UltraViolet Cyber security-as-code platform combines technology innovation and human expertise to make advanced real-time cybersecurity accessible for all organizations by eliminating risks of separate red and blue teams. By creating continuously optimized identification, detection, and resilience from today s dynamic threat landscape, UltraViolet Cyber provides both managed and custom-tailored unified security operations solutions to the Fortune 500, Federal Government, and Commercial clients. UltraViolet Cyber is headquartered in McLean, Virginia, with global offices across the U.S. and in India. Our Dedicated Defense model is curated for our customers looking to implement and/or optimize their SIEM and SOC tool stack. This opportunity is aligned within UltraViolet Cyber to perform a key SIEM migration for our customers. The Senior Security SIEM Engineer will be getting to lead a Fortune 250 company through a transformative security and technology project, leading a global team developing methodology for SIEM migration best practices, and have the opportunity to learn cutting edge technology. Roles Include : We re looking for a for a full-time Security Staff Consultant to parachute in wherever software insecurity invades and to stomp out bugs and flaws wherever they hide. Does this sound like a good role for you In this role, you will join in the execution and delivery of planned project deliverables and milestones that assist clients in learning, understanding, and applying our secure software development methodologies. You will typically have task responsibility within one project and develop the capability to perform tasks within one or more of our security practices continuously learn and expand your technical expertise. Some work is from the office, but you will often go on site to help customers exterminate the bugs and untangle the flaws that make their systems insecure. Our consultants make themselves and their team indispensable advisors to our customers: they build the relationships that help create and identify follow-on assignments. Responsibilities include but not limited to the following: Secure code Analysis and Review Software/Application Penetration Testing Network Penetration Testing Architecture Security Analysis and Threat Modeling Secure Software Design,Architecture, and Engineering Software/Application Reverse Engineering Red Team Analysis (including network, wireless, physical, and social engineering techniques) Database Security Analysis Cloud Pen testing ( WS , Azure etc) Technical Skills Experience with web application penetration testing Familiarity with software security weakness and vulnerabilities Experience in performing source code review Experience in network penetration testing Working understanding of one scripting language Experience in reverse engineering is a plus Familiarity with at least one software programming language and framework is a plus Consulting Skills Ability to interface with clients, utilizing consulting and negotiating skills Ability to undertake and complete tasks autonomously Meet schedules and delivery timelines, and to move swiftly from concepts and theory to action Enthusiasm and commitment Professional interpersonal skills and an entrepreneurial drive Written communication skills for use in preparing formal documentation. Verbal skills that include the ability to clearly articulate thoughts and to deliver presentations. Willingness to travel 20-50% Key Qualification Bachelor s Degree in Computer Science, Engineering or equivalent. Master s Degree preferred Any relevant certifications such as CISSP , CRTP, CRTO, OSCP, PNPT, CEH, OSWE, CREST, GIAC etc. is a plus Preferred Experience 1 to 10 yrs. of work experience in relevant role We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
The Network Engineers will ideally possess 0 to 1 year of technical experience in the areas of routing, switching, Security (Palo Alto), Wireless and Data Center Technologies. The candidate should have good attitude and Team/Customer handling skill. Roles and Responsibilities Primarily to monitor and ensure the network uptime of the client is 100% Prepare monthly availability and performance reports of the client Provide root cause analysis of outages Upgrade firmware/Software of network devices Provide vendor management for all ISP s and OEM s to support the infrastructure Design, build and implement extranet connectivity with 3rd parties using site-to-site IPSec VPN or dedicated MPLS connectivity. Implement configurations and implementation instructions into Clients change management system and insure that all approvals and processes are adhered to compliant with Audit. Work with the Firewall and Load Balancing team on troubleshooting connectivity issues Work on high and low severity tickets (includes incidents and SR) and adhere to the SLA process Work on End of Life hardware upgrades on head end and remote end devices and insure the asset management is up to date Candidate need to work on 24*7 shifts Should have a knowledge on ITIL process Technical Skills: Hands on experience of Routing & Switching on vendor devices like Cisco. Should have expert knowledge in Wireless office for Cisco Knowledge of other vendor products such as Palo Alto, F5 is a plus Certified in CCNA. Process and Non-Technical Skills: Must possess strong written and verbal communication skills Must possess good customer relations skills Must possess ability to work independently and be well organized Must be able to manage multiple projects and multi-task effectively Must be able to work within accelerated deliverables and within a team environment Strong project management skills and must possess good customer and vendor facing skills