Sr. Technical Consultant

Location: Dubai, Customer OnsiteMode of work: Work from office (Daily)Required Skillset6 to 8 Years Proven hands-on experience with SentinelOne EDR (Installation, agent deployment, configuration, monitoring, and troubleshooting)Hands-on expertise with Palo Alto Cortex XDR, including investigation and response workflows.Solid understanding and experience in EDR, NDR, and XDR concepts and architectures.Experience in malware detection, threat hunting, and incident responseAbility to create and tune detection rules, policies, and automated responsesFamiliarity with integrating SentinelOne with:Experience integrating EDR/XDR with firewalls, SIEM, SOAR, and threat intelligence feeds (e.g., Rapid7, QRadar, LogRhythm)Handling SIEM/SOAR tools, ticketing systems, and threat intelligence feedsGood understanding of Windows, Linux, and macOS endpoint environmentsBasic scripting knowledge (e.g., PowerShell, Python) is a plusExperience in malware analysis, MITRE ATT CK framework, and threat lifecycle management.Familiarity with Windows, Linux, and macOS endpoint environments.Strong communication skills and the ability to work effectively with internal teams and external vendorsWillingtowork onclient location - onsiteResponsibilitiesPlatform Installation, Administration MaintenanceAdminister, configure, and maintain the SentinelOne EDR and PaloAlto Cortex platform across multiple enterprises endpoints.Ensure all endpoints are properly on-boarded and reporting to the management console.Manage policy configurations, device groups, and automation rules.Threat Monitoring ResponseMonitor real-time alerts and incidents generated by SentinelOne.Monitor EPO, network, NGFW, identity, and cloud telemetry through PA Cortex.Monitor the advanced threats File-less attacks Lateral movement and privilege escalations.Perform triage, initial investigation, and containment of endpoint security threats.Collaborate with SOC and Incident Response teams to elevate and resolve complex threats.Reporting ComplianceGenerate weekly and monthly reports on endpoint threat activity, coverage, response status.Ensure compliance with internal security policies and external regulatory requirements.Provide audit and compliance support by maintaining accurate logs and documentation.Integration OptimizationIntegrate SentinelOne with other security tools (SIEM, SOAR, ticketing systems, etc.).Optimize policies, automation rules, and detection capabilities to reduce false positives.Stay updated with the latest SentinelOne features and threat intelligence.Support TroubleshootingServe as the primary point of contact for EDR-related issues and support.Troubleshoot agent deployment and communication issues on various platforms (Windows, macOS, Linux).Coordinate with SentinelOne support for issue escalation and resolution.Tools Technology ExperienceSentinelOnePalo Alto CortexNote: Any additional skill set is an advantageQualificationsEducational QualificationsBachelor degree in Computer Science / Engineering or equivalently advanced industry certificationsAdditionally, Product certification in above solutionsCertification Eligibility: certification mandatory in tools technology category#J-18808-Ljbffr