Sentinel One Administrator

Description: SentinelOne Administrator
Job Title:SentinelOne Administrator (Z2)Department:CybersecurityJob Summary:We are seeking a skilled SentinelOne Administrator to manage, configure, and maintain our Endpoint Detection and Response (EDR) environment. You will be responsible for overseeing the deployment, monitoring, and ongoing optimization of SentinelOne across the enterprise. This role ensures endpoint security across IT, OT, and cloud environments, playing a key part in protecting against cyber threats and supporting incident response.Key Responsibilities:• Manage and maintain the SentinelOne EDR platform across all endpoints.• Monitor alerts, events, and incidents generated by SentinelOne.• Fine-tune detection policies to reduce false positives and optimize detection efficacy.• Collaborate with SOC teams to investigate, contain, and remediate security threats.• Integrate SentinelOne with SIEM/SOAR tools (e.g., Microsoft Sentinel, Splunk).• Perform periodic health checks, audits, and updates of the SentinelOne environment.• Onboard new systems or business units into SentinelOne.• Ensure compliance with internal security policies and external regulatory requirements.• Provide technical support during security incidents and forensic investigations.• Generate dashboards and reports for KPIs, such as incident trends and endpoint health.• Collaborate with the IT, Cloud, and OT Security teams for policy enforcement and rollouts.Qualifications:• 3+ years of experience in cybersecurity or endpoint security.• Proven experience managing SentinelOne or other EDR solutions (e.g., CrowdStrike, Defender for Endpoint).• Familiarity with incident response processes and SOC workflows.• Hands-on experience integrating EDR with SIEMs (e.g., Microsoft Sentinel, Splunk).• Strong knowledge of Windows, Linux, and macOS endpoint security.• Understanding of MITRE ATT&CK, Cyber Kill Chain, and threat detection techniques.• Experience with automation via SOAR or scripting (PowerShell, Python) is a plus.• Certifications such as SentinelOne Ranger, Security+, CEH, or SC-200 are preferred.Soft Skills:• Strong analytical and troubleshooting skills.• Excellent communication and documentation abilities.• Ability to work independently and as part of a cross-functional team.• Proactive and detail-oriented approach to security operations.

Enable Skills-Based Hiring No

Additional Details

• Planned Resource Unit : (55)IT_TRUCKS;(11)F/TC - Application Engineer - 3-6 Yrs
• ;Cyber Security;(Z2)3-6 Year

send your resume: aman.a@acesoftlabs.com