Security Control Management (SCM) Engineer

Job Description

Job Description

Description :

Job Summary : The SCM Engineer will be responsible for managing and optimizing Security Control Management (SCM) tools, on behalf of our clients as a service, to ensure the integrity, confidentiality, and availability of systems and data.

This role involves collaborating with various teams, both internally and externally, to implement security controls, monitor compliance, and respond to security incidents.

The successful candidate will have a team-oriented, client-facing mindset with proven experience conducting EDR, VRM or firewall infrastructure deployments.

You will help clients identify high impact threat scenarios and execute proof of concepts for prevention, detection, and response using customized endpoint security architectures.

You’ll use your deep insights to identify, recommend and execute resolution for detected incidents while helping to develop and execute methodologies for deployment, feature enablement and technical integration in a SOC.

Key Responsibilities :

• Manage SCM Tools : Oversee the deployment, configuration, and maintenance of SCM tools such as CrowdStrike, Sentinel One and Tenable.
• Security Controls Implementation : Design, implement, and monitor security controls to protect systems and data.
• Compliance Monitoring : Ensure compliance with industry standards and regulations (e.g., ISO 27001, NIST).
• Incident Response : Investigate and respond to security incidents, providing timely and effective resolutions.
• Collaboration : Work closely with clients IT, DevOps, and security teams to integrate security control tools into the development and operational processes.
• Documentation : Maintain comprehensive documentation of security controls, policies, and procedures.
• Training and Education : Consult and train customers on operational practices within their SCM tools.

Requirements : Qualifications :

Qualifications :

• Education : Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Experience : Minimum of 3-5 years of experience in security control management or a related role.
• Proven success contributing to a team-oriented environment
• Proven ability to work with clients in a problem-solving environment
• Technical Skills : Proficiency in SCM tools, knowledge of security frameworks, and experience with incident response.
• Certifications : Relevant certifications such as CISSP, CISM, or CEH are a plus.
• Soft Skills : Strong analytical and problem-solving skills, excellent communication and teamwork abilities, and a proactive approach to security.

Nice to Haves :

• EDR administration (CrowdStrike Falcon, VMware Carbon Black, Palo Alto Network Cortex XDR, Microsoft Windows Defender, Cylance, Tanium etc.)
• Experience working with EDR tools performing requirements gathering, deployment, configuration, and conducting threat hunting
• Experience working with operational information security disciplines (e.g. incident response, security infrastructure management, or monitoring services)
• Cybersecurity experience in complex global enterprises and Fortune 500 companies
• Experience with security tool engineering and administration (e.g. NGAV, EPP, EDR, SIEM, SOAR, UEBA, Deception, Attack Surface Management, etc.)
• Some of the following EDR experience
• Agent deployment, health check and coverage sustainability
• Threat Hunting
• Systems integration
• Comparing vendor functionality
• Mapping EDR capabilities to threat scenarios
• Deep understanding and proven experience in Cybersecurity Operations (Monitoring, Detection, Incident Response, Forensics)
• Project and delivery management experience
• Tenable / Vuln management experience
8 days ago