CASB\/CWPP 2B

Roles and Responsibilities:

Configuration and Management:

• Configure and optimize endpoint security tools including CrowdStrike Falcon and Microsoft Defender Antivirus and Firewall.
• Collaborate with security engineers to enhance configurations to defend against advanced threats.
• Continuously adapt configurations based on new threat intelligence and emerging risks.

Monitoring and Analysis:

• Monitor endpoint security alerts and identify potential incidents across the environment.
• Investigate endpoint security incidents, determine root causes, and ensure corrective and preventive actions are taken.
• Analyze endpoint security data to detect suspicious activity, vulnerabilities, and trends.
• Prepare regular reports reflecting endpoint security posture, risks, and effectiveness.

Threat Hunting:

• Perform threat hunting using advanced capabilities in CrowdStrike Falcon to identify hidden or emerging threats.
• Work with security analysts to enhance threat hunting strategies and response procedures.

Collaboration and Communication:

• Collaborate with security engineers, system administrators, and IT operations to ensure seamless integration of endpoint security controls.
• Participate in employee security awareness initiatives focused on endpoint best practices.
• Maintain detailed documentation of endpoint configurations, processes, and policies.