Cybersecurity Engineer (Endpoint & Incident Response) Contract

Job Title: Cybersecurity Engineer (Endpoint & Incident Response)

Job Level: Individual Contributor MidLevel (25 Years Experience)

Location: Boston MA (Onsite 4 days a week on site minimum)

Department: Information Security / Cybersecurity Operations

Position Summary

We are seeking a Cybersecurity Engineer with 25 years of handson experience supporting endpoint security incident response and security operations in a regulated enterprise environment. This role will be a key contributor within daytoday cybersecurity operations partnering closely with the Cyber Security Operations Center (CSOC) to detect analyze and respond to security incidents across the enterprise.

The ideal candidate has strong experience with endpoint management EDR/XDR platforms data loss prevention (DLP) and vulnerability management tools and is comfortable operating in environments subject to regulatory and compliance requirements. This position requires both technical depth and the ability to collaborate across security IT and compliance teams.

Key Responsibilities

Incident Response & Security Operations

• Act as a primary responder for endpointrelated security incidents coordinating closely with the CSOC on investigation containment eradication and recovery activities.
• Monitor triage and respond to alerts generated from EDR/XDR DLP and endpoint management platforms.
• Perform indepth analysis of endpoint telemetry to identify malicious activity lateral movement and indicators of compromise (IOCs).
• Support incident documentation root cause analysis and postincident reviews to improve detection and response capabilities.

Endpoint & Detection Tooling

• Administer and operate endpoint security and management tools including but not limited to:
• CrowdStrike (EDR/XDR threat hunting response actions)
• Microsoft Intune (endpoint management policy enforcement device compliance)
• Forcepoint (DLP monitoring policy tuning incident handling)
• Tune detection logic alert thresholds and response workflows to reduce false positives while maintaining strong security coverage.
• Collaborate with engineering and IT teams to ensure secure endpoint configurations and enforcement of security baselines.

Vulnerability Management

• Support vulnerability management activities using tools such as Tenable including:
• Scanning endpoints and systems
• Analyzing vulnerability findings
• Assisting with risk prioritization and remediation tracking
• Partner with infrastructure and application teams to validate remediation and reduce exposure.

Regulatory & Compliance Support

• Operate within a regulated environment ensuring security controls align with internal policies and external regulatory requirements.
• Assist with evidence collection control validation and audit support related to endpoint security incident response and vulnerability management.
• Ensure security processes and response activities are documented and repeatable.

Collaboration & Continuous Improvement

• Work closely with CSOC analysts threat intelligence IT operations and compliance teams to improve detection response and operational maturity.
• Contribute to the development and refinement of runbooks playbooks and standard operating procedures (SOPs).
• Stay current on emerging threats attack techniques and endpoint security best practices.

Required Qualifications

Experience

• 25 years of professional experience in cybersecurity operations incident response or endpoint security.
• Handson experience with:
• Endpoint Management tools (e.g. Intune or equivalent)
• EDR/XDR platforms (e.g. CrowdStrike)
• DLP solutions (e.g. Forcepoint)
• Vulnerability management tools (e.g. Tenable)
• Experience working in a regulated or compliancedriven environment.

Technical Skills

• Strong understanding of endpoint security concepts attacker techniques and incident response lifecycle.
• Ability to analyze security alerts logs and telemetry to determine impact and severity.
• Familiarity with Windows endpoint security controls and enterprise endpoint architectures.
• Working knowledge of vulnerability scanning prioritization and remediation processes.

Soft Skills

• Strong communication skills with the ability to explain technical issues to both technical and nontechnical stakeholders.
• Ability to work effectively under pressure during active security incidents.
• Collaborative mindset with a strong sense of ownership and accountability.

Preferred Qualifications

• Experience working directly with or embedded alongside a CSOC.
• Exposure to threat hunting or proactive detection activities.
• Security certifications such as Security GSEC GCED GCIA or similar (not required but preferred).
• Experience supporting audits or regulatory assessments.

What We Offer

• Opportunity to work in a mature cybersecurity program with modern tooling.
• Exposure to realworld incident response and enterprisescale security operations.
• Professional development training and certification support.
• Competitive compensation and benefits package.

$70-$76/HR

This job posting is for a temporary role with a third-party agency partner on assignment at Vertex Pharmaceuticals (Vertex). The individual selected for this role will be offered the role as an employee of a third- party agency partner; compensation medical benefits fringe benefits and other terms and conditions of employment shall be presented by the third-party agency partner upon offer. The pay rate range provided is a reasonable estimate of the anticipated compensation range for this job at the time of posting. The actual pay rate will be based on a number of factors including skills competencies experience location and/or being pursued and other job-related factors permitted by addition this role will be eligible for overtime pay in accordance with federal and state requirements

By applying for this position you agree to the Atrium Terms and Conditions and you direct Atrium to share your application materials which may include your CV/Resume email address or phone number with Vertex. For more information on how Vertex handles your personal data related to your job application please see Vertexs Careers Privacy Notice. Agreeing to the Atrium Terms and Conditions includes permission to use the email address and mobile phone number you provide during the application process or throughout the duration of your prospective or actual employment to notify you of job openings profiles articles news and other employment-related information as well as to notify you of special promotions or additional products and services offered by us or our affiliates and partners

(collectively Atrium Alerts). Atrium Alerts may be sent by email phone or text message. Your personal information will be safely stored within the Atrium & Vertex databases. Atrium does not sell your personal information to third parties. Text message and data rates may apply. To OPT OUT of text messaging or to modify your communication preferences for Atrium Alerts at any time please contact Atrium at .

If you do not agree with the Atrium Terms and Conditions you can still complete your application for this position by emailing your resume to our team at Please include the job title in the subject of your email.

No C2C or Third-Party Vendors