ZipRecruiter

Log In

1

Microsoft Defender Edr Jobs (NOW HIRING)

SBC Innovations LLC

Sr. CrowdStrike Engineer

Washington, DC ยท On-site

$118K - $162K/yr

Provide engineering, architecture, and Tier 3 support for EDR/NGAV platforms (CrowdStrike, Microsoft Defender) * Design, implement, and optimize endpoint protection policies across enterprise ...

Kepora

Application Engineer 4

Potomac, MD

Proficient in one or more EDR platforms (Trellix HX/EDRF or Microsoft Defender for Endpoint EDR, preferably both). โ€ข Cloud Applications: Experience with cloud security and familiarity with cloud ...

JBA International

Microsoft 365 Security Engineer

Irvine, CA ยท On-site +1

$110K - $130K/yr

Implement and optimize Microsoft Security tools, including but not limited to Microsoft Defender ... EDR), and network security. * Certifications such as Microsoft Certified: Security Operations ...

Eliassen Group

SOC Analyst

Washington, DC ยท Hybrid

$50 - $55/hr

Analyze alerts from EDR/XDR solutions such as Microsoft Defender. * Monitor identity-related risks across platforms including Okta, Entra ID, and Privileged Identity Management. * Investigate ...

acralending

IT System Security Engineer

Irvine, CA ยท On-site

$110K - $130K/yr

Experience working with tools such as Microsoft Defender, Microsoft Intune, Okta, SIEM platforms ... EDR), and network security. * Certifications such as Microsoft Certified: Security Operations ...

Eliassen Group

SOC Analyst

Washington, DC ยท Hybrid

$50 - $55/hr

Analyze alerts from EDR/XDR solutions such as Microsoft Defender. * Monitor identity-related risks across platforms including Okta, Entra ID, and Privileged Identity Management. * Investigate ...

acralending

IT System Security Engineer

Irvine, CA ยท On-site

$110K - $130K/yr

Experience working with tools such as Microsoft Defender, Microsoft Intune, Okta, SIEM platforms ... EDR), and network security. * Certifications such as Microsoft Certified: Security Operations ...

next page

Showing results 1-20

All JobsMicrosoft Defender Edr Jobs

Microsoft Defender Edr information

See salary details

$16

$70

$95

How much do microsoft defender edr jobs pay per hour?

As of Jun 15, 2026, the average hourly pay for microsoft defender edr in the United States is $70.17, according to ZipRecruiter salary data. Most workers in this role earn between $60.58 and $79.81 per hour, depending on experience, location, and employer.

What is the salary of Microsoft Defender engineer?

The salary of a Microsoft Defender EDR engineer varies based on experience, location, and company size, but typically ranges from $80,000 to $130,000 annually. Professionals with cybersecurity skills and certifications like CISSP or CompTIA Security+ may earn higher salaries, especially in high-demand regions.

What are the key skills and qualifications needed to thrive as a Microsoft Defender EDR Specialist, and why are they important?

To excel as a Microsoft Defender EDR Specialist, you need a solid background in cybersecurity, threat detection, and incident response, often supported by a degree in computer science or related certifications like Microsoft Certified: Security Operations Analyst Associate. Familiarity with Microsoft Defender for Endpoint, SIEM tools (like Microsoft Sentinel), and advanced analytics platforms is typically required. Strong analytical thinking, attention to detail, and effective communication help professionals investigate threats and collaborate with IT teams. These skills are vital for quickly identifying, containing, and mitigating security incidents to protect organizational assets.

What is Microsoft Defender EDR?

Microsoft Defender EDR (Endpoint Detection and Response) is a security solution that helps organizations detect, investigate, and respond to advanced threats on their endpoints. It provides real-time monitoring, behavioral analysis, and automated investigation capabilities to identify suspicious activities and attacks. Defender EDR integrates with other Microsoft security tools to provide a comprehensive defense strategy, making it easier for security teams to respond quickly to incidents and minimize potential damage.

What is an EDR job?

An EDR (Endpoint Detection and Response) job involves monitoring, analyzing, and responding to security threats on computer endpoints using specialized tools and software. Professionals in this role work to detect malicious activity, investigate security incidents, and implement measures to prevent future attacks, often requiring knowledge of cybersecurity, threat intelligence, and security protocols.

Does Microsoft Defender do EDR?

Microsoft Defender for Endpoint, which is part of Microsoft Defender, provides Endpoint Detection and Response (EDR) capabilities. It offers threat detection, investigation, and response tools to help security teams identify and mitigate advanced cyber threats. As a security professional, understanding how to configure and manage Defender's EDR features is essential for effective endpoint security.

Is Defender a good EDR?

Microsoft Defender EDR is a reputable endpoint detection and response solution integrated into Windows, offering real-time threat detection, automated response, and integration with other Microsoft security tools. It is widely used in enterprise environments and is suitable for security analysts and IT professionals managing Windows-based networks. Its effectiveness depends on proper configuration and complementary security measures.

How does a Microsoft Defender EDR specialist typically collaborate with other IT teams within an organization?

A Microsoft Defender EDR specialist frequently works alongside IT security, infrastructure, and helpdesk teams to ensure comprehensive endpoint protection. They coordinate on incident response, threat analysis, and system updates, often participating in cross-functional meetings to share insights and align on security protocols. This role also involves communicating findings from security alerts, recommending remediation steps, and helping to implement best practices across the organization. Effective collaboration is essential to quickly identify and mitigate threats while keeping all stakeholders informed.
Infographic showing various Microsoft Defender Edr job openings in the United States as of June 2026, with employment types broken down into 4% Internship, 7% Full Time, 79% Part Time, 6% Temporary, and 4% Nights. Highlights an 81% Physical, 7% Hybrid, and 12% Remote job distribution, with an average salary of $145,963 per year, or $70.2 per hour.

Sr. CrowdStrike Engineer

SBC Innovations LLC

Washington, DC โ€ข On-site

$118K - $162K/yr

Full-time

Medical, Retirement

Posted 24 days ago

Job description

About SBC Innovations:
Join SBC Innovations and contribute to cutting-edge systems integration in a dynamic federal enterprise environment. Please help us maintain and enhance our enterprise-level IT systems, ensuring security, efficiency, and optimal performance across our extensive network of devices.
At SBC Innovations, we are dedicated to finding and hiring talented individuals with the right attitude, tenacity, and motivation. We truly believe in the value you bring to our organization.
Position overview
This position is for a Sr. CrowdStrike Engineer to provide advanced Endpoint Detection & Response (EDR) and Next-Generation Antivirus (NGAV) engineering support within a large-scale enterprise environment.
The role supports enterprise cybersecurity operations across a highly distributed environment, providing engineering, architecture, policy design, and Tier 3 troubleshooting for EDR/NGAV platforms such as CrowdStrike Falcon and Microsoft Defender. The position focuses on enhancing endpoint security posture, supporting Zero Trust initiatives, and ensuring compliance with federal cybersecurity standards.
  • Must be U.S. Citizen
  • Must meet DOJ residency requirements
  • Hybrid schedule (approx. 3 days onsite per week)
  • Locations: Washington, DC or Columbia, SC

The primary scope of duties include
  • Provide engineering, architecture, and Tier 3 support for EDR/NGAV platforms (CrowdStrike, Microsoft Defender)
  • Design, implement, and optimize endpoint protection policies across enterprise environments
  • Manage and maintain EDR/NGAV configurations including policies, host groups, and security controls
  • Troubleshoot EDR sensor, platform, and application performance issues
  • Develop dashboards, reports, and analytics for security monitoring and compliance
  • Support incident response and malware investigations in coordination with SOC teams
  • Integrate EDR platforms with enterprise SIEM and security tools
  • Support enterprise-wide deployment and lifecycle management of endpoint security solutions
  • Provide technical guidance, mentorship, and training to junior engineers
  • Develop and maintain documentation, SOPs, and operational procedures
  • Participate in change control, status reporting, and project planning activities

Minimum Candidate Requirements
  • Bachelor's degree in Computer Science, Information Technology, or related field
  • 2-5 years of experience supporting EDR/NGAV platforms (CrowdStrike, Microsoft Defender, or equivalent) in enterprise environments
  • Experience defining security, utilization, and performance requirements in mid-to-large scale environments

Technical Experience & Knowledge
Architect, configure, and maintain enterprise EDR/NGAV platforms supporting:
  • ~2,500+ servers (Windows/Linux/cloud)
  • ~15,000+ workstations
  • ~2,500+ virtual desktop environments (VDI)

Design and manage security policies including:
  • NGAV prevention policies
  • Identity protection policies
  • USB device control policies
  • Firewall and endpoint response policies

Manage platform configurations including:
  • User roles and permissions
  • Dynamic host group structures
  • Sensor and content update policies

Develop dashboards and reporting for:
  • Security analytics
  • Event trending
  • Compliance auditing
  • Executive reporting

Troubleshoot data integrity and deployment issues within the platform.
Support integration with SIEM platforms and Zero Trust architecture initiatives.
Provide Tier 3 escalation support to enterprise IT and security teams.
Assist with malware analysis, incident response, and threat intelligence activities.
Maintain configuration baselines and documentation for audit and compliance purposes.
Preferred Qualifications
  • CrowdStrike Certified Falcon Administrator (CCFA)
  • CrowdStrike Certified SIEM Engineer (CCSE)
  • CrowdStrike Certified Cloud Specialist (CCCS)
  • Equivalent cybersecurity or endpoint security certifications

Skill Sets Anticipated
  • Deep expertise with CrowdStrike Falcon and/or Microsoft Defender
  • Experience managing EDR/NGAV policies, IOAs, IOCs, and ML-based exclusions
  • Strong knowledge of Windows, Linux, and macOS environments
  • Experience with enterprise endpoint deployments across large environments (10,000+ endpoints)
  • Experience with SIEM integration (e.g., Splunk)
  • Strong understanding of Zero Trust architecture principles
  • Experience with firewall configuration and endpoint protection controls
  • Advanced troubleshooting and root cause analysis skills
  • Strong documentation and technical writing capabilities

Key Competencies
  • Strong analytical and problem-solving skills
  • Excellent communication and stakeholder engagement abilities
  • Ability to manage multiple priorities and work under tight deadlines
  • Close attention to detail and commitment to operational excellence

Who You Are:
You are energized when faced with complex technical challenges and diligently work to identify creative solutions that address these issues effectively. You possess the ability to perform high-quality work, both independently and as part of a team, in a fast-moving and dynamic environment. You have a strong ability to plan and prioritize tasks, enabling you to consistently meet and exceed customer expectations.
Salary is Negotiable
Job Type:
Full-Time W2 or 1099/C2C
Medical Benefits & 401 (k) are available for W2 full-time employees
Clearance Level - Must be able to obtain for the position
  • Secret or Top-Secret Clearance

Location:
  • Hybrid schedule (approx. 3 days onsite per week)
  • Locations: Washington, DC or Columbia, SC

Apply