Cyber Security Engineer at IDPP, United Kingdom, 3 Months, £425 per day

£425 per day

Contract Description

Cyber Security Engineer (EDR Specialist)

Location: Remote (UK)
Rate: £425 per day (Outside IR35)
Contract: 9-12 months (initial 3-month rolling contract)

The Role

We're looking for an experienced Cyber Security Engineer with deep, hands-on expertise in Endpoint Detection & Response (EDR) technologies. This is a technical engineering role, not a governance or advisory position.

You'll be responsible for configuring, deploying, tuning and optimising enterprise EDR platforms while supporting security tooling evaluations and Proof of Concept (POC) activities. The successful candidate will have extensive experience working directly within EDR consoles and enterprise endpoint environments.

Key Responsibilities

  • Configure, administer and optimise enterprise EDR platforms.
  • Deploy and onboard endpoints across large enterprise environments.
  • Develop and tune detection policies, prevention rules, exclusions and response workflows.
  • Investigate endpoint security events and provide technical remediation guidance.
  • Lead and support Proof of Concept (POC) engagements for endpoint security technologies.
  • Assess EDR platforms based on detection capability, operational effectiveness and performance.
  • Work closely with SOC, Infrastructure and Desktop Engineering teams to implement and improve endpoint security controls.
  • Integrate EDR tooling with SIEM and wider security platforms where required.
  • Produce technical documentation, implementation guides and engineering standards.

Essential Experience

  • Strong hands-on engineering experience with enterprise Endpoint Detection & Response (EDR) platforms.
  • Commercial experience configuring and administering one or more of:
    • Microsoft Defender for Endpoint (MDE)
    • CrowdStrike Falcon
    • Trend Micro Vision One/Apex One
  • Experience configuring security policies, onboarding endpoints, exclusions, attack surface reduction rules and detection tuning.
  • Experience deploying or migrating enterprise EDR solutions.
  • Strong understanding of endpoint security, malware protection, incident response and threat detection.
  • Experience investigating endpoint alerts and supporting security incidents.
  • Comfortable working in complex enterprise Windows environments.

Highly Desirable

  • Experience with all three platforms (Microsoft Defender for Endpoint, CrowdStrike Falcon and Trend Micro Vision One/Apex One).
  • Experience integrating EDR platforms with Microsoft Sentinel, Splunk or other SIEM solutions.
  • Threat Hunting experience.
  • PowerShell Scripting or automation.
  • Microsoft Intune and Entra ID experience.
  • MITRE ATT&CK knowledge.
  • Experience supporting large enterprise endpoint estates (5,000+ devices).