Information Security Engineer - Endpoint

Requirements

• Deep, working knowledge of AD architecture
• Hands-on experience investigating and detecting AD attacks
• Familiarity with attack tooling (BloodHound, Impacket, Rubeus, Mimikatz, CrackMapExec)
• Experience hardening AD environments
• Thorough understanding of Windows security architecture
• Ability to read and interpret Windows kernel structures
• Proficiency with low-level analysis tools (WinDbg, Process Monitor, Process Hacker, Volatility, and x64dbg)
• Experience with ETW-based telemetry pipelines and building detections on top of raw Windows event data
• Proven track record writing high-fidelity detection logic
• Experience leading complex incident response investigations
• Strong forensic fundamentals across disk, memory, and network artifacts on Windows systems
• Proficiency in Python or PowerShell for detection development, automation, and forensic tooling
• Active TS/SCI security clearance

Benefits

• Medical, dental, and vision insurance
• Voluntary life insurance
• Commuter benefits
• Paid time off
• Paid holidays
• Supportive leave of absence program
• Paid leave for new parents
• Subsidized back-up care for all parents
• Fertility and family building benefits
• 401k plan