Endpoint, Network & IPS Security Subject Matter Expert

Job Description:

Endpoint Network & IPS Security Subject Matter Expert

We are seeking a passionate Endpoint Network & IPS Security SME to strengthen enterprise security across devices identities and network boundaries.

In this role you will work extensively with Microsoft Defender for Endpoint Intune IPS technologies NAC firewalls SASE and secure web proxieshelping design and implement security controls that protect largescale enterprise environments.

While the core of this position centers on endpoint protection network defense and intrusion prevention you will also support Microsoft Purview for data governance and compliance as part of a broader security ecosystem.

If you enjoy shaping security architecture improving controls and collaborating with technical experts across multiple domains this role offers the opportunity to drive impactful change and grow your visibility as a security specialist.

Job Description:

• Validate and support deployment of Microsoft Defender for Endpoint (MDE) ensuring protection EDR and hardening requirements are met.
• Assist in planning deploying and maintaining Microsoft Intune policies for secure device management compliance enforcement and configuration baselines.
• Support integration and continuous improvement of Intrusion Prevention Systems (IPS) across onpremises and cloud network environments.
• Review and support integration of Network Access Control (NAC) into the endpoint and network security ecosystem.
• Implement and manage key Network Security technologies including:

• Firewalls (Palo Alto Fortinet Cisco Check Point)
• SASE platforms (Zscaler Prisma Access Netskope)
• Secure Web Proxy / URL Filtering (Zscaler Forcepoint Blue Coat/Symantec)
• IPS Platforms (Palo Alto Threat Prevention Cisco Firepower IPS Fortinet IPS)

• Review and refine firewall rules segmentation policies and IPS signatures to strengthen network access security.
• Monitor and respond to alerts in Microsoft 365 Defender supporting incident investigation and remediation activities.
• Experience with Microsoft Purview features such as Information Protection DLP Insider Risk and Information Barriers will be an added advantage.
• Experience with Microsoft Secure Score for monitoring analyzing and improving enterprise security posture across Microsoft 365 services will be an added advantage.
• Build and maintain PowerShell scripts and KQL queries for automation reporting and threat hunting.
• Support vulnerability management using Tenable or similar tools.
• Prepare documentation and support operational handover after deployment.

Job Level required: Endpoint Network & IPS Security Subject Matter Expert

• Applies strong subjectmatter expertise in Endpoint Security Network Security and IPS to support enterprise protection and governance objectives.
• Works independently on moderately complex to advanced tasks and contributes to cross-functional security initiatives.
• Participates in design implementation and tuning of endpoint and network controls based on business and regulatory requirements.
• Collaborates with IT Network Engineering Compliance and SOC teams to ensure consistent enforcement visibility and threat prevention.
• Supports junior engineers and contributes to internal process improvement and documentation efforts.

Technical Skills and Experience Required:

Essential Requirement:

35 years of experience in endpoint security network security IPS operations and/or Microsoft 365 security technologies. Strong understanding of endpoint protection network security architecture IPS/IDS concepts Zero Trust principles and data protection.

Required Technology Implementation Experience
(Experience in a minimum of 3 of the following is required)

Microsoft Defender for Endpoint Microsoft Intune (Endpoint Management) Intrusion Prevention Systems (IPS) Palo Alto Cisco Firepower Fortinet etc. Network Access Control (NAC) Network Security Solutions such as:

• Firewalls (Palo Alto Fortinet Check Point Cisco)
• SASE (Zscaler Prisma Access Netskope)
• Secure Web Proxy / URL Filtering (Zscaler Blue Coat/Symantec Forcepoint)

Microsoft Purview (Information Protection DLP Insider Risk) secondary Microsoft 365 Defender Portal PowerShell scripting KQL for threat hunting and reporting Tenable or other vulnerability management platforms

As an employer of choice our people first philosophy means we offer competitive remuneration benefits training and career opportunities that reflect our commitment to improving the lives of our employees and the communities in which we live and work. Some of these include.

• Extensive resources to support your onboarding and continual development including DXC University
• DXC Recognition our global virtual platform that fosters a culture of appreciation and celebration with real-time reward and recognition
• We know that great people refer great people. We will reward you when you bring your friends and family to work at DXC
• More time to do the things you love with flexible leave options including purchased leave
• Take time to give back with charitable and emergency services volunteer days
• Well-being matters to us and our Employee Assistance Program is there to support you and your family

Instagram:

At DXC Technology we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing productivity individual work styles and life circumstances. Were committed to fostering an inclusive environment where everyone can thrive.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services such as false websites or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process nor ask a job seeker to purchase IT or other equipment on our information on employment scams is availablehere.