WW-IN-Security-ID442-MS Defender -JL09

Job Description:

• Provide operational support for Microsoft Defender for Endpoint to manage from Configuration Manager/SCCM and ATP console for multiple platforms across the client environment
• Escalation Point of contact for complex technical issues. 
• Rotational weekend on-call to address critical issues. Ability to work weekends when necessary for scheduled tasks.
• Responsible for bringing problems to a resolution within a timely manner.
• Lead operational projects to completion working with other stakeholders (including vendors).
• Drive the resolution of all priority issues including participation in technical assistance conference calls.
• Support customers with process and technical questions related to daily operational work.
• Lead continuous improvement initiatives to drive efficiency and automate processes within DXC Operations.
• Knowledge on compliance and regulatory requirements to assist with security audits and assist in remediation of any MS Defender/ATP console.

Additional responsibilities include:

• To deploy the agents using the SCCM and other deployment tools.
• To configure and manage the security policies and collections for the endpoints through SCCM and Intune.
• Responsible to keep the client’s environment safe and secure by managing the security compliance status of endpoints.
• To generate AV compliance, scan reports and threats reports.
• Ensure MS Defender services and systems are always available and reliable.
• Report, pursue, communicate, and when needed escalate any breaches in information security or policies.
• Able to coordinate and work with on-site engineers during outage or critical situations.
• Adhere to established incident management SLAs.
• Able to document troubleshooting/process related documents for the team.

Qualifications:

• Bachelor’s Degree in Computer Science or equivalent industry experience

Other Qualifications

• Professional Qualifications are preferred, including:
  • Microsoft 365 Security Center/Defender for Endpoint/Threat Protection/Endpoint Manager.
  • Microsoft 365 Certified: Security Administrator Associate.
• ITIL V4 Foundation Certified.

Desired Years of Experience: 4 to 6 years
 

Number of years’ experience is provided as a guideline for recruiter and represents the amount of experience typically needed to be successful in this role. Candidates with less years of experience may be considered based upon education, unique skills, or other factors to be determined at time of hire.

Technical skills:

• Expertise in Microsoft 365 Security Center and Defender for Endpoint.
• Hands-on to Manage Windows Defender ATP capabilities.
• Good knowledge in XDR .
• Should have expertise knowledge on ADR, SCCM configuration, WSUS configuration and AAD configuration.
• To manage AV policy, ASR policy, EDR policy and Firewall policy.
• Hands-on to manage Co-managed devices from console.
• Knowledge to Query Advanced hunting and to create Custom detection rules.
• Knowledge on Next gen Antivirus, EDR, Device Control.
• Knowledge on Threat hunting & Intel, Malware search & analysis.
• Knowledge on Managing and protecting identities in Azure AD.
• Analysis and remediation of Malware Incidents.
• Ability to manage support cases with external technology vendors.
• Knowledge of virtual technologies is a plus. 
• Discipline and experience in recognizing and handling confidential and sensitive information.
• Excellent time management is crucial.
• Ability to effectively prioritize and execute tasks in a high-pressure environment.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.