Applications Engineer IV (EDR)

• Deploy, configure, test, manage, and optimize endpoint detection and response solutions across the NSA enterprise.

Establish comprehensive Standard Operating Procedures (SOPs) for EDR functionalities and lead training sessions to

empower SOC analysts in maximizing platform efficiency and threat visibility.

Essential Duties and Responsibilities:

• Responsible to the deployment, testing, management, and optimization of endpoint detection and response solutions. This

role involves deploying, configuring, testing, and monitoring EDR capabilities to traditional on premises and cloud

environments. The ideal candidate should have a strong background in endpoint security, cloud applications, Windows

forensics, large enterprise endpoint deployments, and SOC analyst support.

Do you have experience in Windows?, * EDR Solutions: Proficient in one or more EDR platforms (Trellix HX/EDRF or Microsoft Defender for Endpoint EDR, preferably both).

• Cloud Applications: Experience with cloud security and familiarity with cloud service providers (AWS or Azure, preferably both).
• Cloud Security: Experience securing cloud-hosted workloads using EDR solutions and understanding cloud-native security controls and logging (Microsoft

Sentinel, Microsoft Defender, Microsoft Purview, AWS CoudWatch, AWS CloudTrail, AWS GuardDuty, or AWS Security Hub). CCSP Certified Cloud Security

Professional certification or equivalent.

• Security Operations Center (SOC) Support: Experience supporting SOC functions such as assisting in monitoring, training analysts, documenting SOPs,

incident response coordination, analysis of security events, and process/procedure improvement. Microsoft Certified: Security Operations Analyst

Associate (SOAA) or equivalent.

• Network Security: Understanding of network protocols, traffic analysis, and intrusion detection systems (CompTIA Security+ is required).
• Windows Forensics: In-depth knowledge of Windows operation system internals, registry, and file system. Familiarity with forensic tools like EnCase, FTK,

or open-source alternatives. SANS Windows Forensic Analysis (FOR500) or equivalent.

Desired Experience:

• Threat Hunting: Proactive identification and investigation of potential security threats and anomalies.
• Incident Response: Experience in managing and responding to security incidents, including containment, eradication, and recovery.
• Security Information and Event Management (SIEM): Familiarity with SIEM systems for log analysis and correlation (e.g. Splunk, Elastic, Microsoft Sentinel).
• Scripting and Automation: Proficient in scripting languages (e.g., PowerShell, Python) for automating tasks and workflows.

Pulled from the full job description

• 401(k) 4% Match
• 401(k) matching
• Vision insurance
• Dental insurance
• Life insurance
• Disability insurance
• Profit sharing, Quevera employees voted Quevera as a TOP EMPLOYER in the Baltimore /DC area by the Washington for 2025 for the 5th consecutive year!

Excellent Quevera's Benefits:

Medical/Dental/Vision (100% Employer Paid Medical Plan)

Short/Long Term Disability (Employer Paid)

Life Insurance (Employer Paid)

Yearly $5,000 towards education/training/certification.

Employees are in control of their career path through our Career Pathway Program.

Employer paid Company Vacation Package for you and a guest!

Retirement