Apply Now: Click here
Job Overview
Job Title: L2 EDR Administrator
Company: UST
Job Type: Full-Time
Role Level: L2 / SME
Primary Skills: EDR, SIEM, XDR, Managed Security
Shift: Rotational / Global Support
Role Proficiency
As an L2 EDR Administrator, you will provide advanced operational support across Endpoint Detection and Response (EDR) and SIEM platforms for global customers. The role requires independent platform monitoring, health checks, incident triage, and proactive issue identification with minimal supervision.
Key Outcomes & Responsibilities
Platform Health & Operations
- Perform health checks across one or multiple EDR/SIEM platforms
- Identify issues early and escalate to senior team members when required
- Support service requests, access provisioning, dashboards, and query creation
- Assist with maintenance activities and platform architecture understanding
- Generate regular operational and compliance reports
- Ensure adherence to SLA, workflows, and audit trails
- Follow escalation pipelines and in-life support processes
Incident & Service Support
- Provide L1/L2 incident support and guide junior team members
- Conduct proactive threat identification using behavioral analysis
- Execute daily operational tasks with minimal supervision
Technical Expertise
- Develop strong hands-on expertise in SIEM or EDR platforms
- Implement technical solutions for:
- Queries
- Rules
- Dashboards
- Data feeds
- Support automation initiatives using scripting
EDR & Security Responsibilities
- SME-level experience in any two EDR tools:
- Microsoft Defender
- CrowdStrike
- SentinelOne
- Deploy, configure, and troubleshoot EDR sensors on Linux systems
- Analyze logs and investigate security incidents on Linux machines
- Support EDR services across:
- Servers
- Desktops
- Laptops
- Provide recommendations to customers for improving EDR usage and posture
ITIL & Change Management
- Strong understanding of ITIL processes
- Manage and maintain Change Management activities:
- Schedule and review change requests
- Ensure resource availability
- Post-change effectiveness reviews
- Maintain pre-authorized change lists
Required Skills & Experience
- Hands-on experience with SIEM / EDR / XDR platforms
- Strong knowledge of Windows Servers & Workstations
- Working experience with Linux systems
- Experience with log analysis and security incident investigation
- Knowledge of scripting languages for automation
- Strong analytical and troubleshooting skills
- Excellent verbal and written communication skills
- Ability to work in rotational shifts
Key Skills
SIEM, EDR, XDR, Managed Security, Linux, Windows Security, CrowdStrike, SentinelOne, Microsoft Defender, ITIL
What We Believe – UST Values
- Humility: We listen, learn, and collaborate with empathy
- Humanity: We use technology to improve lives
- Integrity: We honour commitments and act responsibly
Equal Employment Opportunity Statement
UST is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other legally protected status.
UST reserves the right to redefine roles and responsibilities based on business requirements and individual performance.
Disclaimer
This job post is shared for informational purposes only. Job responsibilities, eligibility criteria, and hiring decisions are solely managed by UST. Candidates are advised to verify details and apply through the official UST careers portal.
