Sr. Endpoint_Security_Engineer

Sr_Endpoint_Security_Engineer_JD Job Summary: We are seeking a skilled Sr Endpoint Security Engineer with hands-on experience in Symantec Endpoint Security, Symantec Data Loss Prevention (DLP), Microsoft 365 Email Security, FortiGate Firewalls, Vulnerability Management, EDR, and SIEM operations. The role involves protecting endpoints, email, and network infrastructure through threat detection, data protection, vulnerability remediation, and incident response. Key Responsibilities: • Deploy, configure, and manage Symantec Endpoint Security (AV / SEP / SES Complete) across enterprise environments. • Monitor endpoint threats, malware outbreaks, suspicious behavior, and policy compliance. • Investigate and remediate endpoint security incidents including malware, ransomware, and insider threats. • Administer and manage Symantec Data Loss Prevention (DLP) across endpoints, email, and network channels. • Design, implement, and tune DLP policies for sensitive data protection (PII, financial data, intellectual property). • Monitor and investigate DLP incidents, perform root cause analysis, and coordinate remediation with business teams. • Configure detection technologies including policies, dictionaries, EDM/IDM, and fingerprinting techniques. • Perform DLP policy tuning to reduce false positives and improve detection accuracy. • Generate DLP reports and support audit/compliance requirements (ISO 27001, GDPR, etc.). • Manage Endpoint Detection & Response (EDR) activities such as alert investigation, host isolation, file quarantine, and IOC blocking. • Ensure endpoint agent health, version compliance, and policy tuning to reduce false positives. • Operate Vulnerability Management tools such as Qualys VMDR for endpoints, servers, and network devices. • Conduct authenticated vulnerability scans, analyze findings using CVSS, and risk-based prioritization. • Collaborate with infrastructure and application teams to remediate vulnerabilities and track closure through re-scans. • Integrate endpoint, email, firewall, EDR, and vulnerability logs with SIEM platforms (e.g., Microsoft Sentinel). • Monitor SIEM alerts, perform log analysis, correlation, and support threat hunting and incident investigations. • Administer Microsoft Defender for Office 365 including anti-phishing, anti-spam, antimalware, Safe Links, Safe Attachments, and email authentication (SPF, DKIM, DMARC). • Investigate email-based threats using Threat Explorer, message trace, and quarantine management. • Configure, manage, and troubleshoot FortiGate firewalls including policies, NAT, VPNs, IPS, AV, and web filtering. • Perform firewall rule reviews, optimization, security hardening, and participate in change management. • Generate security metrics, dashboards, and reports for management, audits, and compliance support.

At Zensar, we’re “experience-led everything”. We are committed to conceptualizing, designing, engineering, marketing, and managing digital solutions and experiences for over 130 leading enterprises. We are a company driven by a bold purpose: Together, we shape experiences for better futures. Whether for our clients, our people, or the world around us, this belief powers everything we do. At the heart of our culture is ONE with Client - a set of four core values that reflect who we are and how we work: One Zensar, Nurturing, Empowering, and Client Focus.

Part of the $4.8 billion RPG Group, we’re a community of 10,000+ innovators across 30+ global locations, including Milpitas, Seattle, Princeton, Cape Town, London, Zurich, Singapore, and Mexico City. Explore Life at Zensar and join us to Grow. Own. Achieve. Learn. to be the best version of yourself.

We believe the best work happens when individuality is celebrated, growth is encouraged, and well-being is prioritized. We are an equal employment opportunity (EEO) and affirmative action employer, committed to creating an inclusive workplace. All qualified applicants will be considered without regard to race, creed, color, ancestry, religion, sex, national origin, citizenship, age, sexual orientation, gender identity, disability, marital status, family medical leave status, or protected veteran status.