Endpoint Detection & Response Engineer - Booz Allen Hamilton

Key Responsibilities

• Design, deploy, and fine‑tune EDR platforms to meet client security objectives and compliance requirements.
• Develop and execute threat‑hunting playbooks, leveraging scripting (PowerShell, Python) to automate detection and response workflows.
• Integrate EDR data with SIEM solutions, creating dashboards and alerts for real‑time visibility.
• Collaborate with cross‑functional teams to assess security gaps, recommend mitigations, and document implementation procedures.
• Stay current on emerging attack techniques, evaluate new security technologies, and contribute to continuous improvement of detection capabilities.

Requirements

• 3+ years of hands‑on experience with enterprise EDR solutions (e.g., CrowdStrike, SentinelOne, Carbon Black).
• Strong scripting skills in PowerShell and Python for automation and data analysis.
• Proficient in Windows and Linux system administration and forensic data collection.
• Experience with SIEM platforms (e.g., Splunk, QRadar) and creating actionable alerts.
• Active security clearance and a solid understanding of threat‑modeling and incident response processes.