Endpoint Technical Lead

Your Responsibilities :

Attend client calls and provide updates for the respective tools

Support L2 for troubleshooting issues

Manage end-to-end Endpoint Security Solutions including installation, configuration, management, administration, and troubleshooting

Hands-on experience in the security incident response lifecycle and its phases

Provide service improvement suggestions to management

Fine-tune rules and raise cases with vendors for any issues

Suggest new integrations to clients and their benefits

Support Endpoint Detection and Response (EDR) applications to ensure cybersecurity service availability for all endpoints (servers, desktops, laptops)

Monitor encryption, EDR, and AV logs (Bitlocker, Symantec, Sentinel One)

Monitor dashboard for compliance, threats, and troubleshoot issues

Check if any incidents are missed by L1 and follow up for the cause

Maintain SOP for new events

Whitelisting / blacklisting of IPs

Review phishing templates sent by L1 and perform 4-Eye Check

Troubleshoot Proofpoint issues for users and escalate to L3 if unresolved

Fine-tune policies in Cisco ESA and Fireeye

Manage the team and attend client calls

Monitor EDR, email gateway, and AV logs

Monitor dashboard for compliance, threats, and troubleshoot issues

Your Experience :

Strong knowledge and understanding of the Microsoft E5 suite

Hands-on experience with Defender ATP, Azure ATP, O365 Security

Experience in creating and deploying antimalware policies for Endpoint Protection in System Center Configuration Manager

Risk / log analysis and understanding of Indicators of Compromise (IOC)

Basic knowledge of Defender ATP automation and scripting

Knowledge of grouping / tagging, ATP vulnerability assessment

Experience with attack simulators, anti-phishing policies, reporting, and threat analytics

Configuring automation, investigation, and response

Malware and spyware detection and remediation

Rootkit detection and remediation

Critical vulnerability assessment and automatic definition and engine updates

Working knowledge of client firewall tools, managing auto location, firewall policies, HI checks, and intrusion detection

Knowledge of DLP, O365, Azure, Intune, encryption

Experience with Microsoft Defender for Endpoint (MDE) including configuration, management, and troubleshooting

Experience with Microsoft Defender for Office 365 (MDO) including implementation, policy fine-tuning, and threat management

Email Security :

Familiarity with email protection from threats including phishing, BEC, imposter, and others

Handling email security and related incidents

Knowledge of MX records, DNS, Active Directory, SSO, SAML

Implementation of email security standards such as SPF, DKIM, and DMARC

Implementation of security standards such as SIEM

Enhancing security of email infrastructure by implementing controls to manage and mitigate risks

Analysis and implementation of perimeter email security and email routing solutions

Building Standard Operating Processes for operations of the platform

Managing knowledge transfer of operations to L2 teams

Ensuring compliance with Group Security policies

Collaborating with M365, Cyber Security leads, Cyber Defense, Group Security teams

Soft Skills :

Strong team performance and ability to work in rotational shifts

People management skills for delivering complete service delivery for EP Security Services

Experience in presenting Microsoft 365 solutions to all levels of decision-makers

Knowledge of ITIL processes (Incident, Change, Problem, Major Incident Management)

Mentoring team members in day-to-day operations and handling escalations

Providing business improvement solutions to clients and execution skills

Life at Capgemini :

Capgemini supports all aspects of your well-being throughout the changing stages of your life and career. For eligible employees, we offer :

Flexible work

Healthcare including dental, vision, mental health, and well-being programs

Financial well-being programs such as 401(k) and Employee Share Ownership Plan

Paid time off and paid holidays

Paid parental leave

Family building benefits like adoption assistance, surrogacy, and cryopreservation

Social well-being benefits like subsidized back-up child / elder care and tutoring

Mentoring, coaching and learning programs

Employee Resource Groups

Disaster Relief

About Capgemini :

Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to engineering, all fueled by its market leading capabilities in AI, cloud and data, combined with its deep industry expertise and partner ecosystem. The Group reported 2023 global revenues of 22.5 billion.

Get the future you want | www.capgemini.com ()

Disclaimer :

Capgemini is an Equal Opportunity Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, national origin, gender identity / expression, age, religion, disability, sexual orientation, genetics, veteran status, marital status or any other characteristic protected by law.

This is a general description of the Duties, Responsibilities and Qualifications required for this position. Physical, mental, sensory or environmental demands may be referenced in an attempt to communicate the manner in which this position traditionally is performed. Whenever necessary to provide individuals with disabilities an equal employment opportunity, Capgemini will consider reasonable accommodations that might involve varying job requirements and / or changing the way this job is performed, provided that such accommodations do not pose an undue hardship.

Capgemini is committed to providing reasonable accommodations during our recruitment process. If you need assistance or accommodation, please reach out to your recruiting contact.

Click the following link for more information on your rights as an Applicant

Job : Technology Strategy

Organization : CIS US MS

Title : Endpoint Technical Lead

Location : MI-Southfield

Requisition ID : 081551