Endpoint Security Consultant

The Endpoint Security Consultant is responsible for administering, operating, and continuously improving enterprise endpoint protection, detection, and vulnerability management capabilities. This role focuses on securing endpoints and servers against modern threats through the deployment, configuration, and optimization of endpoint protection platforms, EDR solutions, and vulnerability management tools. The consultant also supports governance, compliance, incident response, and continuous security improvement initiatives while working closely with SOC, infrastructure, and business teams.

• Administer, configure, and optimize Trend Micro Deep Security, Kaspersky Total Security, and Kaspersky Security Network (KPSN) across enterprise endpoints and servers.
• Develop, implement, and fine-tune endpoint security policies, rules, and baselines to protect against malware, ransomware, and advanced persistent threats.
• Manage upgrades, patches, and version migrations for endpoint security solutions.
• Deploy, configure, and manage Cybereason EDR for detection, response, and remediation of endpoint threats.
• Integrate EDR telemetry with SIEM/SOC environments for enhanced visibility and threat hunting.
• Manage EDR platform upgrades, including agent deployment and version lifecycle management.
• Conduct environment-wide sweeps using YARA signatures to detect advanced threats.

• Administer Tenable Security Center, Nessus Manager, and Tenable.io for continuous vulnerability scanning, compliance checks, and web application assessments.
• Conduct regular vulnerability scans, analyze results, and prioritize risks based on CVSS, VPR, and asset criticality.
• Provide actionable remediation plans and work closely with IT/Infrastructure and business stakeholders to ensure timely patching and risk reduction.
• Upgrade Tenable Security Center, Nessus Manager, and scanners when required.
• Develop security standards, operational procedures, and runbooks for endpoint and vulnerability management.
• Support audits, compliance assessments, and provide evidence for regulatory requirements.

• Lead endpoint security lifecycle management including design, deployment, monitoring, and tuning.
• Perform gap analysis to continuously improve endpoint and vulnerability defenses.

• 8+ years of experience in endpoint security, vulnerability management, and detection and response.
• Trend Micro Deep Security (server/VM protection, intrusion prevention, anti-malware, firewall, integrity monitoring, etc.)
• Kaspersky Total Security (AV, firewall, device control, application control, encryption, etc.)
• Tenable Security Center, Nessus Manager
• Cybereason EDR

• Security administration, upgrades, and policy configuration
• Vulnerability scanning, prioritization, and remediation tracking
• Endpoint threat detection and incident response
• Strong knowledge of endpoint security, Windows/Linux endpoints, and hard disk encryption.
• Familiarity with integration with SIEM, SOAR, and ticketing systems (e.g., Splunk, ServiceNow).
• Excellent analytical, problem-solving, and communication skills.

• Bachelor’s degree in Computer Science, Information Security, or a related field.

• Trend Micro, Kaspersky, IBM Guardium, or Imperva certifications.
• Security certifications such as CISSP, Security+, or equivalent.