• Act as the SME for initiatives that enhance EDR visibility, detection, and prevention for Windows, macOS, and Linux • Develop and enhance SOAR workflows and playbooks, integrating them with EDR systems for more effective incident response and threat management • Innovate and implement sophisticated SOAR solutions, including custom automated workflows and orchestration that address high-level security challenges • Define and maintain strategy and roadmap for Carbon Black and CrowdStrike, and Sentinel One’s Detection functionalities with other team members, and other departments. • Collaborate closely with SOC, Managed/Hosted SIEM team to understand threat and attack trends • Utilize strategic insight and organizational skills to identify unmet customer needs, define use cases, and advance the functional capabilities of this offering • Maintain, administer and provide end point security management tools (anti-virus, data loss prevention, web/spam filtering, etc.) • Assist customers with viruses and system vulnerabilities/threats • Implement efficiencies and create strategies to better detect/respond to cyber incidents, alerts and detections. • Escalate detections/incidents/alerts to our customers through the ITSM/ITIL tools