Lead Endpoint Platform Engineer

Secureworks® (NASDAQ: SCWX) is a global cybersecurity leader that protects customer progress with Secureworks® Taegis™, a cloud-native security analytics platform built on 20+ years of real-world threat intelligence and research, improving customers’ ability to detect advanced threats, streamline and collaborate on investigations, and automate the right actions.

We enjoy competitive compensation and benefits packages, and reward and recognize our employees for exceptional results. A constant focus on continued learning and growth keeps our team members engaged and excited about “what’s next.” We offer flexible work options when available, and emphasize the importance of work-life balance. We know that when our people are rewarded, recognized, and rejuvenated, we win as a team.

Essential Requirements

1-3 years of experience in cyber security
Experience in working with Splunk is a must
Deep understanding and direct experience with security vendor products (McAfee, Microsoft, Cylance) is a requirement
University education, degree in Computer Science, Information Systems, or Network and Security
Detailed knowledge of security technologies
Fluent in English
Desirable Requirements

McAfee Certified Product Specialist certification or similar vendor certifications are preferred
Possess active industry certifications such as Comptia Security+, SSCP, GCIH, GCIA or related
Working knowledge/experience of network systems security principles and applications
Fundamental understanding of defense in depth strategies.

Key Responsibilities

Our future colleague will focus on tiered security platform management services on a variety of security platforms, with a strong focus on Splunk and act as a single technical point of contact for the rest of the team. Service responsibilities include direct communication with high level Customer executives and Customer security professionals, in addition to overseeing the daily tasks and deliverables handled by the rest of the team.

Real time support and ticket handling
Troubleshooting security incidents, reported by end-users or discovered by proactive health checks
Case escalation and management
Problem resolution
Patch management and software updates
General administration (user accounts, settings, policies, groups, etc…)
Reporting (ad-hoc or regular)
System summaries
Non-compliance overviews
Traffic and utilization summaries
Miscellaneous security platform specific outputs
Accountabilities

Team lead within a Platform Engineering team
Conducts analysis and prepares reports
Single point of contact in all matters technical for the team
Coordinates day-to-day activities for the rest of the team
Responsible for the operational coverage of the team (in terms of schedule)
Assists in the recommendation for improvements and the development of technical standards
Monitors the various security platforms to ensure their availability
Strong focus on all Splunk activities
Main point of escalation for all technical activities
Creates and maintains operational documentation