System Engineer
CurrentConfigure and implement CSMA and CIS controls utilizing security baselines and policy templates and settings within in Intune and Jamf.Assist in administrating and maintaining CrowdStrike - Falcon endpoint security, and assist in performing remediation, if needed. Remediation often happens with either running scripts remotely through CrowdStrike (if applicable and able), or deploying remediations through Automox or Intune.Expanded log monitoring to include SumoLogic SIEM for monitoring internal infrastructure, such as servers, firewalls, and VPN.Assist in conducting annual security audits, such as SOC2 and ISO 27001.Work cross-department within the org to develop and increase security oversight and implementation of policies and security controls.Configure and administer Palo Alto firewalls, including but not limited to, deploying policy based forwarding rules, configuring and maintaining GlobalProtect VPN with LDAP and certificate authentication, and overall firewall functionality. Document network traffic flow, and maintain network diagrams of physical and logical network infrastructure.Research, test, set up, and deploy internal Enterprise Certificate Authority (ADCS), as well as administer said CA. Set up and manage NDES/SCEP machine certificate deployment across both Windows and MacOS devices.Established process automatic system deployment to new users and existing user replacements by leveraging automatic setup through Jamf for MacOS and Autopilot through Intune for Microsoft Windows.