Security Systems Specialist

Technology never sleeps and neither do we. At CDW, we're always on, forever vigilant and information security is infused in our DNA. Our System Specialist - Security career puts you on the front-line of defense, the cutting-edge of innovation and plays a crucial role within the CDW Security Operations Center. The System Specialist - Security will be responsible for the management of Managed Detection and Response technologies and should have a solid understanding and working experience with Microsoft Sentinel and Endpoint Detection and Response (EDR) platforms.

You will work closely with the customer and CDW operations team and will be responsible for onboarding customers, creating various security use-cases and dashboards, and providing expert advice on how the security of customers' environment can be improved by using various features and capabilities of enterprise Endpoint Detection and Response platforms. As a System Specialist - Security, you will also be working internally with Security Operations Center team to improve security operation and monitoring as it relates to services offered via EDR, SIEM, and SOAR.

Join us now, secure your future and advance your IT security career like nowhere else.

**What you'll do**
- Providing expert guidance regarding the implementation of advance security use cases and correlation rules for the SIEM environment.
- Installation (scripted), operation, and troubleshooting of Microsoft Sentinel and EDR deployments as well as management of Microsoft Sentinel knowledge objects (Analytic Rules, Analytic and Hunting Queries, Workbooks, Playbooks, etc.)
- Researching, analyzing, and understanding common and complex log sources and their data connector requirements
- Creating detailed reports, queries, dashboards and visualizations that support customer requirements and monitoring of the SIEM deployment
- Responsible for working with stakeholders to troubleshoot issues with Microsoft Sentinel and EDR deployments
- Coordinating and conducting event collection, log management, event management, and compliance automation
- Developing analytic rules to support alerting and response capabilities for CDW SOC services
- Supporting platform problem, change and incident on an 8x5 basis in addition to the daily tuning of false positives from the L2 and L3 incident response teams
- Overseeing daily monitoring of security reports & assisting the incident response team in investigating alerts along with opportunities to automate and tune response activities
- Document and create process improvements as needed when gaps are/have been identified
- Lead and coordinate onboarding of new Microsoft Sentinel and EDR customers into the SOC
- Conducts proof of concepts, vendor comparisons and recommend solutions in line with business requirements

**What you need to succeed**
**Must-have**
- Degree in Engineering, Computer Science, Science or equivalent
- Sound knowledge of Microsoft Sentinel and EDR platforms including Microsoft Defender, CrowdStrike, and Cortex XDR
- 2+ years of experience working with Microsoft Sentinel and/or comparable SIEM technologies
- 2+ years of experience working with EDR platforms including Microsoft Defender, CrowdStrike, and Cortex XDR
- Ability to remain calm in a fast-paced work environment and to demonstrate thoughtful leadership in assessing problems/opportunities and recommending an approach to solving problems and pursuing opportunities
- Hold a minimum of two of the following (or commitment to complete within six months of hiring):

- SC-200
- MS-500
- AZ-500

**Nice-to-have**
- Industry certification such as CISSP, CEH, OSCP, PNPT, GSEC, CISM, CISA, etc., or other related security certifications
- Understanding and ability to speak to security frameworks (NIST, ISO27001), security compliance (PCI, SOC I, SOC II) and ITIL frameworks
- Able to obtain and maintain Canadian Security Clearance

**Who we are**
CDW is a leading technology solutions provider to business, government, education and healthcare organizations in Canada, the United States, and the United Kingdom. Our fingerprints can be found on technology in workplaces of more than 250,000 companies; from fresh-faced startups to international conglomerates. With the breadth of products and services we offer, combined with the expertise of our specialists, there is no request too big or too small. A unified team of challenge takers, diverse thinkers and problem solvers, we believe when you enjoy what you do and who you do it with, you do your best work. And that means everyone wins.

**Awards and Recognitions**
- #178 on the Fortune 500 list
- #81 on Glassdoor's Best Places to Work
- #1 on Channel Daily News' Top 100 Solution Providers List across Canada
- Fortune's Future 50, an index that evaluates the long-term growth prospects of major public

**Our Benefits**
- CDW offers a variety of benefits, perks and development programs that enable coworkers to perform at their best personally and professiona