Senior Endpoint Detection & Response Engineer - Booz Allen Hamilton

Key Responsibilities

• Design, implement, and fine‑tune EDR solutions across Windows and Linux endpoints to meet customer security objectives.
• Integrate EDR data with SIEM platforms, creating parsers, dashboards, and automated alerting workflows.
• Develop and maintain detection scripts and automation using PowerShell and Python to accelerate incident response.
• Conduct proactive threat‑hunting, malware analysis, and forensic investigations to identify and remediate advanced threats.
• Collaborate with cross‑functional teams to define security architectures, best practices, and operational procedures.
• Stay current on emerging attack techniques and evaluate new security technologies for potential adoption.

Requirements

• 5+ years of hands‑on experience with enterprise EDR platforms (e.g., CrowdStrike, Carbon Black, Microsoft Defender).
• Strong scripting skills in PowerShell and Python for automation and detection development.
• Experience integrating endpoint data with SIEM solutions such as Splunk, QRadar, or Elastic.
• Deep knowledge of Windows and Linux operating systems, networking, and common attack vectors.
• Proven ability to perform threat hunting, incident response, and forensic analysis in complex environments.