System Engineer (Endpoint Security Monitoring & Operations) – CISSP Required

*Job Overview*

We are seeking a System Engineer with strong experience in endpoint security operations and enterprise IT infrastructure support. The role focuses on monitoring endpoint protection platforms, handling security incidents, maintaining system health, and ensuring compliance across Windows and Linux environments.

This position also requires CISSP certification, reflecting the need for strong security knowledge, governance awareness, and best practices in enterprise security operations.

*Key Responsibilities*

* Endpoint Security Monitoring & Maintenance*

* Monitor endpoint protection platforms such as Trellix ENS, IVX, and ATD to ensure optimal performance and threat detection.

* Perform routine checks on endpoint agent health, DAT/signature updates, and policy compliance.

* Ensure consistent enforcement of endpoint security policies across all devices.

* Escalate critical security incidents or system issues to Tier 2/3 or SOC teams as required.

* Threat Investigation & Troubleshooting*

* Investigate endpoint security issues such as malware alerts, false positives, detection anomalies, agent failures, and update issues.

* Perform initial analysis of security logs, quarantine events, and endpoint alerts.

* Troubleshoot endpoint protection and communication issues to restore normal operations.

* Document findings, resolutions, and contribute to knowledge base documentation.

*Incident Handling & User Support*

* Provide frontline support to IT operations teams for endpoint security and malware-related issues.

* Monitor and triage security alerts based on severity and operational impact.

* Follow standard operating procedures (SOPs) for incident management and escalation.

* Ensure timely resolution of incidents to minimize business disruption.

* Endpoint Administration & Policy Management*

* Assist in managing endpoint security policies across Windows and Linux environments.

* Configure and support real-time scanning, firewall rules, and threat prevention settings.

* Support deployment of security patches, antivirus signatures, and configuration updates.

* Maintain compliance with organizational security baselines and standards.

* Documentation & Continuous Improvement*

* Develop and maintain SOPs, troubleshooting guides, and operational documentation.

* Identify recurring issues and recommend improvements to enhance endpoint security operations.

* Support continuous improvement initiatives for security monitoring and incident response processes.

*Key Requirements*

* Mandatory*

* CISSP (Certified Information Systems Security Professional)

* Experience in endpoint security operations or IT infrastructure support

* Knowledge of endpoint protection tools (e.g., Trellix ENS, IVX, ATD or equivalent)

* Experience in incident handling and troubleshooting in IT environments

* Understanding of Windows and Linux systems administration

* Ability to follow SOPs and escalation procedures

* Preferred Skills*

* Experience with SIEM tools (Splunk, Sentinel, QRadar, etc.)

* Exposure to SOC environments or security operations centers

* Knowledge of malware analysis and threat detection

* Familiarity with ITIL processes (Incident, Problem, Change Management)

* Strong documentation and communication skills

*Key Focus Areas*

* Endpoint Security Monitoring

* Threat Detection & Incident Response

* System & Agent Health Management

* Windows/Linux Administration

* Security Policy Enforcement

* Operational Stability & Compliance

* Security Governance (CISSP-level understanding)