***** Must be a US Citizen Due to Client Constraints ***** **Your Responsibilities:** + Attend client calls and provide updates for the respective tools + Support L2 for troubleshooting issues + Manage end-to-end Endpoint Security Solutions including installation, configuration, management, administration, and troubleshooting + Hands-on experience in the security incident response lifecycle and its phases + Provide service improvement suggestions to management + Fine-tune rules and raise cases with vendors for any issues + Suggest new integrations to clients and their benefits + Support Endpoint Detection and Response (EDR) applications to ensure cybersecurity service availability for all endpoints (servers, desktops, laptops) + Monitor encryption, EDR, and AV logs (Bitlocker, Symantec, Sentinel One) + Monitor dashboard for compliance, threats, and troubleshoot issues + Check if any incidents are missed by L1 and follow up for the cause + Maintain SOP for new events + Whitelisting/blacklisting of IPs + Review phishing templates sent by L1 and perform 4-Eye Check + Troubleshoot Proofpoint issues for users and escalate to L3 if unresolved + Fine-tune policies in Cisco ESA and Fireeye + Manage the team and attend client calls + Monitor EDR, email gateway, and AV logs + Monitor dashboard for compliance, threats, and troubleshoot issues **Your Experience:** + Strong knowledge and understanding of the Microsoft E5 suite + Hands-on experience with Defender ATP, Azure ATP, O365 Security + Experience in creating and deploying antimalware policies for Endpoint Protection in System Center Configuration Manager + Risk/log analysis and understanding of Indicators of Compromise (IOC) + Basic knowledge of Defender ATP automation and scripting + Knowledge of grouping/tagging, ATP vulnerability assessment + Experience with attack simulators, anti-phishing policies, reporting, and threat analytics + Configuring automation, investigation, and response + Malware and spyware detection and remediation + Rootkit detection and remediation + Critical vulnerability assessment and automatic definition and engine updates + Working knowledge of client firewall tools, managing auto location, firewall policies, HI checks, and intrusion detection + Knowledge of DLP, O365, Azure, Intune, encryption + Experience with Microsoft Defender for Endpoint (MDE) including configuration, management, and troubleshooting + Experience with Microsoft Defender for Office 365 (MDO) including implementation, policy fine-tuning, and threat management **Email Security:** + Familiarity with email protection from threats including phishing, BEC, imposter, and others + Handling email security and related incidents + Knowledge of MX records, DNS, Active Directory, SSO, SAML + Implementation of email security standards such as SPF, DKIM, and DMARC + Implementation of security standards such as SIEM + Enhancing security of email infrastructure by implementing controls to manage and mitigate risks + Analysis and implementation of perimeter email security and email routing solutions + Building Standard Operating Processes for operations of the platform + Managing knowledge transfer of operations to L2 teams + Ensuring compliance with Group Security policies + Collaborating with M365, Cyber Security leads, Cyber Defense, Group Security teams **Soft Skills:** + Strong team performance and ability to work in rotational shifts + People management skills for delivering complete service delivery for EP Security Services + Experience in presenting Microsoft 365 solutions to all levels of decision-makers + Knowledge of ITIL processes (Incident, Change, Problem, Major Incident Management) + Mentoring team members in day-to-day operations and handling escalations + Providing business improvement solutions to clients and execution skills **Life at Capgemini:** Capgemini supports all aspects of your well-being throughout the changing stages of your life and career. For eligible employees, we offer: + Flexible work + Healthcare including dental, vision, mental health, and well-being programs + Financial well-being programs such as 401(k) and Employee Share Ownership Plan + Paid time off and paid holidays + Paid parental leave + Family building benefits like adoption assistance, surrogacy, and cryopreservation + Social well-being benefits like subsidized back-up child/elder care and tutoring + Mentoring, coaching and learning programs + Employee Resource Groups + Disaster Relief **About Capgemini:** Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to engineering, all fueled by its market leading capabilities in AI, cloud and data, combined with its deep industry expertise and partner ecosystem. The Group reported 2023 global revenues of €22.5 billion. Get the future you want | www.capgemini.com (http://www.capgemini.com/#\_blank) **Disclaimer:** Capgemini is an Equal Opportunity Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, national origin, gender identity/expression, age, religion, disability, sexual orientation, genetics, veteran status, marital status or any other characteristic protected by law. This is a general description of the Duties, Responsibilities and Qualifications required for this position. Physical, mental, sensory or environmental demands may be referenced in an attempt to communicate the manner in which this position traditionally is performed. Whenever necessary to provide individuals with disabilities an equal employment opportunity, Capgemini will consider reasonable accommodations that might involve varying job requirements and/or changing the way this job is performed, provided that such accommodations do not pose an undue hardship. Capgemini is committed to providing reasonable accommodations during our recruitment process. If you need assistance or accommodation, please reach out to your recruiting contact. Click the following link for more information on your rights as an Applicant http://www.capgemini.com/resources/equal-employment-opportunity-is-the-law **Job:** _Technology Strategy_ **Organization:** _CIS US MS_ **Title:** _Endpoint Security Analyst_ **Location:** _New Jersey_ **Requisition ID:** _080780_