. Advanced proficiency with SIEM (e.g., Splunk, QRadar, Sentinel), EDR (e.g., CrowdStrike, Microsoft Defender), and SOAR...
, and CRIBL to spot anomalies and lateral movement Experience tuning EDR platforms such as CrowdStrike and SentinelOne...
detection and response (EDR) solutions in a customer environment, such as Carbon Black EDR, CrowdStrike Falcon, SentinelOne...
attacker activity. 5 Required Ability to correlate host, network, and intelligence data from CrowdStrike, SentinelOne...
with Endpoint Protection tools like CrowdStrike or CarbonBlack Working knowledge of SIEM tools like Splunk, SOAR, or ELK...
CrowdStrike Falcon and SentinelOne, and integrating EDR telemetry into SIEM and orchestration workflows. 5 Required Threat... workflows that integrate SIEM, IDS/IPS, EDR (CrowdStrike, SentinelOne), threat intelligence, and Jira ticketing for SOC...
(CrowdStrike). The engineer partners closely with Security Operations, IAM, and Infrastructure teams to develop detection use cases... misuse, privilege escalation, and anomalous account behavior. Develop and tune Splunk/CrowdStrike queries, correlation...
interfaces (HMIs), or historians Experience with security or infrastructure tools such as Dragos, Nessus, CrowdStrike...
such as CrowdStrike (EDR/CSPM/IR), cloud-native security services, and SIEM detection rules (with the help of our existing SIEM Management...
and email security platforms including CrowdStrike, Microsoft Defender, BitLocker, Proofpoint, and FireEye/Mandiant Assist in the... of hands-on experience with EDR tools (CrowdStrike, Defender, etc) Experience supporting enterprise email security platforms...