Enable job alerts via email!
Infra Security SME / Cyber security
Cerebra Consulting, Inc.
United Kingdom
On-site
GBP 80,000 - 100,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A cybersecurity consulting firm based in the United Kingdom is looking for an experienced Infra Security SME with over 10 years of expertise in cyber security. The role involves designing and implementing security measures, deploying Falcon agents, and configuring alert rules in Sentinel. The ideal candidate will have strong skills in logging configuration and documentation while contributing to a secure environment. A thorough understanding of CrowdsStrike and relevant technologies is essential.
Qualifications
- 10+ years of experience in Cyber security.
- Expertise in designing and implementing Security Agents.
- Experience with endpoint security and incident response.
Responsibilities
- Configure and ensure availability of required logs into Sentinel.
- Plan and deploy Falcon agents on relevant endpoints.
- Document deployment steps and configurations.
Skills
Tools
Role: 10+ years of experience in Cyber security Designing & implementation of Security Agents, Development, Security agent migration, Physical Security exploitation and design flaw addressment & Endpoint Security.
- Configure & ensure availability of required logs into Sentinel (such as EDR, Qualys, Firewalls etc)
- EDR Deployment Planning: Assess the lab infrastructure and endpoints to determine deployment scope and strategy.
- Plan for agent installation, network requirements, and compatibility with existing systems.
- Deploy Falcon agents on chosen relevant endpoints.
- Tune settings to minimize false positives while maintaining strong security posture.
- Work with SOC consultant to configure alert rules and incident response workflows in Sentinel based on CrowdStrike telemetry.
- Simulate endpoint threats to validate EDR detection and SIEM alerting.
- Test Crowd strikes performance against the OT security visibility and threat protection use cases.
- Set up data connectors between CrowdStrike and Sentinel using APIs or native integrations.
- Documentation & reporting: Document deployment steps, configurations and integration details.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
