- Minimum 5 years of experience with strong knowledge of the innerworkings of Microsoft Defender for Endpoint (MDE) Suite of products (Defender Antivirus (AV), Defender Endpoint detection and response (EDR), Defender Data Loss Prevention (DLP))
- Have a strong knowledge on client health for the Microsoft Endpoint Configuration Manager Client (MECM)
- Have 3+ years of experience with acquiring, reviewing, and releasing approved baseline releases, builds, and patches for servers or workstations using automated and manual methods.
- 3 to 8 years of experience in designing, implementing and integrating cybersecurity tools such as EDR, NDR, XDR, SOAR, MTD.
- Administer various security systems, such as but not limited to SIEM, SOAR, DLP, UBA/UEBA.
- Have an experience with using Microsoft administration tools.
- Working with multiple business and Cybersecurity teams on specific needs
- Leveraging reports, logs, scripts, and Microsoft provided tools such as Procmon, MDEClientAnalyzer, Performance Recorder/Analyzer. Should be able to analyze output/logs produced by these tools.
- Acting as a first line in responding to MDAV, MDE, MECM Solv incidents/requests.
- IT security certification -CISSP, CISM