THE OPPORTUNITY
Dillard's is seeking an Endpoint Security Analyst to join the Information Security Team. In this role, you will be responsible for monitoring and securing the enterprise endpoints. This includes Windows, Linux, and Mac operating systems on workstations, laptops, and servers. You will actively search for vulnerabilities and mitigate cybersecurity risks that affect the company. You will play a prominent role in communicating with our desktop support team and server administration teams to maintain our security posture.
THE TEAM
The Information Security Team is responsible for the confidentiality of customer and employee information, ensuring the data stored and shared maintains integrity, all while making sure that all of this does not impact the availability of the entire Dillard's enterprise.
This team is expected to be high-performing. To meet this expectation, the team members are communicative and collaborative, always sharing knowledge and research with one another. Members of this team should be able to understand what is expected of them and adjust on the fly, as priorities may change depending on the company's needs. If you are someone who sets a standard of excellence for yourself and you enjoy working alongside others who set the same standard and who genuinely want each of their peers to succeed, you may be the perfect addition to this team.
WHAT YOU WILL DO

• Research industry trends, identify ongoing security threats, analyze new security testing tools, and provide recommendations on the need and usefulness of services and/or products for endpoints
• Evaluate and recommend new and emerging security solutions and technologies to address issues or security gaps
• Effectively communicate security concepts with both technical and non-technical individuals
• Be responsible for the daily monitoring of security alerts for the endpoints
• Compile comprehensive audit reports, identifying potential risks/threats to endpoints
• Support business continuity processes (backups, replications, etc.) through continued documentation and testing of the infrastructure environment
• Leading security projects around the endpoint discipline
• Monitor security logs and alerts from various sources, including intrusion detection systems, Endpoint Detection and Response (EDR) systems, and security information and event management (SIEM) tools
• Investigate and analyze endpoint security incidents, identify root causes, and develop appropriate mitigation strategies for endpoints
• Proactive analysis to identify potential security risks and vulnerabilities on endpoints
• Mentor and provide guidance to junior security analysts, sharing knowledge and best practices

THE SKILL SET

• CompTIA Security , A , CySA , ISC2 CC, ISC2 CCSP certification or equivalent
• 3 or more years of experience managing an endpoint security solution
• Familiarity with common I.T. protocols, technologies, and systems
• Thorough understanding of Microsoft Windows Systems
• Experience with an enterprise directory (e.g., Active Directory)
• Experience with group policy analysis
• Possess the ability to communicate complex and technical concepts to a non-technical, general audience
• Superior organization and follow-up skills
• In-depth understanding of operating systems, network/system architecture, protocols, enterprise services, and enterprise architecture design
• Understanding of threats, vulnerabilities, and exploits
• Previous experience in Information Technology or Information Security with a track record of successful accomplishments
• Proven experience as an EDR security analyst, SOC analyst, or similar role in a fast-paced environment
• Experience providing remote response and remediation activities within networks and on endpoints
• Familiar with incident handling, threat hunting, and forensics
• Excellent analytical and problem-solving skills, with the ability to think critically under pressure
• Strong communication skills to effectively collaborate with cross-functional teams and communicate complex security issues to non-technical stakeholders
• Continuous learning mindset to stay updated with the evolving threat landscape and emerging security technologies

WITHIN 1 MONTH, YOU'LL

• Meet with the various disciplines within the team to understand their roles
• Have a familiarity with the various security tools that are used on a daily basis
• Begin understanding Dillard's infrastructure and meet with infrastructure teams

WITHIN 2 MONTHS, YOU'LL

• Understand your daily tasks
• Begin taking ownership of more advanced tasks

WITHIN 3 MONTHS, YOU'LL

• Be prepared to serve in the on-call rotation
• Communicate security gaps found and provide potential solutions for said gaps