Deloitte · 17 hours ago
Endpoint Detection & Response (EDR) Administrator
New York, NY
Full-time
Hybrid
Mid Level
$89K/yr - $163K/yr
4+ years expDeloitte is a leading firm in cybersecurity solutions, and they are seeking an Endpoint Detection & Response (EDR) Administrator to ensure the secure operation of their endpoint security capabilities. This role involves administering the CrowdStrike Falcon platform, managing configurations, and supporting incident response efforts.
AccountingConsultingFinancial ServicesLegalProfessional ServicesRisk Management
No H1B
U.S. Citizen Only
Responsibilities
Administer CrowdStrike Falcon (tenant configuration, sensor health, policy sets, exclusions, groups/tags)
Monitor service performance and endpoint coverage; remediate gaps and recurring agent issues
Implement and maintain policies, prevention settings, and workflows aligned to federal guidelines and industry best practices
Manage change control for configuration updates, including approvals, communications, and rollback readiness
Develop and execute development and production test plans for Falcon components and configuration changes
Validate new features/modules and conduct controlled rollouts (pilot rings, phased deployment, success criteria)
Support Falcon components such as Identity Protection, Forensics, Cloud Workload Protection, Threat Intelligence, and workflow implementation as applicable
Integrate EDR telemetry, alerts, and case workflows with enterprise security services (e.g., SIEM, SOAR, ticketing, identity, vulnerability management)
Troubleshoot data pipelines, alert routing, and enrichment to improve investigation speed and accuracy
Provide expert triage support for endpoint detections, containment actions, and investigative needs in coordination with SOC and endpoint teams
Resolve complex platform issues (policy conflicts, performance impacts, false positives/negatives) and drive root-cause fixes
Produce and maintain baselines, runbooks, SOPs, and knowledge articles; contribute to continuous improvement and lessons learned
Qualification
Required
4+ years of direct experience administering EDR platforms (CrowdStrike preferred)
Bachelor's degree
Ability to obtain Public Trust clearance
Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future
Ability to travel 25%, on average, based on the work you do and the clients and industries/sectors you serve
4+ years of hands-on experience in the following areas: Development and production testing of EDR platform components, including (as applicable): Identity Protection, Forensics, Cloud Workload Protection, policy/workflow implementation, Threat Intelligence
Demonstrated experience integrating EDR components with other security systems and services
Ability to configure EDR solutions to align with federal guidelines and industry best practices
Strong experience developing security baselines, operational troubleshooting, and technical documentation
Preferred
CompTIA Advanced Security Practitioner (CASP+)
ISACA Certified Information Security Manager (CISM)
(ISC)² Certified Information Systems Security Professional (CISSP)
Benefits
Discretionary annual incentive program
Company
Deloitte
Deloitte is a business consulting company that offers audit, consulting, financial advisory, and tax services.
10001+ employees
Funding
Current Stage
Late StageLeadership Team
Anne Muraya
Chief Executive Officer - East Africa
Joe Ucuzoglu
Global Chief Executive Officer
Recent News
2026-02-08
Middle East AI News
2026-02-08
2026-02-07
Company data provided by crunchbase