Cortex XDR Engineer
About The Position
Entelligence is seeking a Cortex XDR Resident Engineer to support our Customer. The successful candidate must be able to work in a cross-functional environment and interact with representatives from Entelligence, the Customer, and the end-user. The Cortex XDR Resident Engineer will function as the Cortex XDR Subject Matter Expert (SME) and will interact directly with the customer's personnel. The Engineer will serve as the technical expert on executive-level project teams within the customer providing technical direction, interpretation, and alternatives. The Engineer contributes to the development of new principles and concepts, works on unusually complex technical problems, and provides solutions which are highly innovative and ingenious.
Requirements
- Endpoint protection deployment, operationalization, troubleshooting, training experience
- Experience as a Security Incident Responder or SOC analyst/manager
- Familiarity with cloud technologies, providers (GCP, AWS, Azure), use-cases
- Networking experience in TCP/IP, OSI Model, troubleshooting, analysis
- Experience in customer-facing roles
- Familiarity with machine learning and its various applications within cybersecurity
- Familiarity with the different enterprise security and IT products, processes, and ecosystem
- Threat hunting and detection engineering experience of tuning alerts, development of custom BIOCs, and development of correlation rules for new log sources
- Experience with log ingestion and parsing rules for XDR
- The ability to develop and maintain scripts in Python or Powershell is a plus
- Familiarity with XQL, SQL, or a query scripting language
- Experience with SIEM tools, such as Splunk
- Familiarity with XDR APIs
- Basic Linux system administration & troubleshooting experience
- Ability to work under pressure and prioritize tasks accordingly
Nice To Haves
- The ability to develop and maintain scripts in Python or Powershell is a plus
Responsibilities
- Work with customers in delivering Cortex XDR's detection and response app that natively integrates network, endpoint, and cloud data to assist customers to stop sophisticated attacks
- Portfolio of applications in support include Advanced Endpoint Protection (XDR), Cortex XDR - Investigations and Response, Cortex XDR - Analytics, Autofocus, Cortex Data Lake and XSOAR (Security Orchestration, Automation & Response)
- Prepare capacity planning, deployment, business continuity and configuration guides
- Ability to communicate effectively in various situations with all levels of an organization from Engineering/Operations to CIO/CISO audiences
- Present highly technical information to non-technical personnel
- Develop key performance indicators (KPIs), understand critical success factors, and continuously measure performance
- Analyze customer requirements, provide guidance & assistance throughout the customer lifecycle to ensure a quick and successful product deployment
- Product Expert - Act as the product SME, working together with product and engineering teams ensuring our customers and partners get the most out of our products
- Drive Product Adoption - Continuous contact with customers to expand adoption of our product by utilizing new features and developing additional innovative use cases
Benefits
- Competitive base salary
- Medical, dental, vision and life insurance
- Vacation, sick time and paid holidays
- Matching 401(k) program
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Industry
Professional, Scientific, and Technical Services
Education Level
No Education Listed
Number of Employees
101-250 employees
