We are looking for a Security Operations Engineer whose main task will be to responsible for operating, maintaining, and securing the Carbon Black EDR platform in a controlled, high-security environment. The role covers EDR server operations, endpoint management, security hardening, incident support, and operational reporting.
Key Responsibilities
EDR Operations
- Operate and maintain Carbon Black EDR servers (RHEL).
- Perform patching, health checks, backups, and service restarts.
- Monitor EDR components (CB services, Solr, PostgreSQL, event forwarders).
- Identify and resolve service, performance, and indexing issues.
- Work with OEM/vendor for advanced troubleshooting.
Endpoint & Infrastructure Support
- Monitor and troubleshoot endpoint sensors.
- Support sensor deployment, recovery, and validation.
Security & Compliance
- Maintain OS hardening in line with CIS and client standards.
- Apply security patches and track vulnerabilities.
- Ensure compliance with client and government security policies.
Incident & Operational Support
- Provide L2/L3 support for security incidents.
- Assist investigations using logs and endpoint telemetry.
- Support forensic and operational requests.
Required Skills
- Experience with Carbon Black EDR or equivalent.
- Strong RHEL 8/9 administration skills.
- Knowledge of networking, firewalls, and TLS.
- Experience with endpoint troubleshooting.
- Understanding of secure operations and access controls.
- Note: We are unable to provide visa sponsorship for the role
