EDR SME (Endpoint Detection & Response)

Administer and manage CrowdStrike Falcon EDR/Prevent modules.

Monitor, investigate, and respond to endpoint security alerts.

Perform incident response, root cause analysis, and threat hunting.

Configure policies, custom IOAs, and detection rules.

Ensure endpoint agent deployment and continuous health monitoring.

Integrate EDR data with SIEM tools such as Splunk, QRadar, or Sentinel.