Security Engineer Velociraptor Deployment

Responsibilities:

• Collaborate with the internal security and IT teams to design and validate scalable Velociraptor deployment architecture.
• Conduct lab testing, security evaluation, and functional verification of Velociraptor components (client and server).
• Automate deployment through enterprise endpoint management platforms (e.g., SCCM, Intune, Jamf).
• Define and implement data routing, storage, and retention strategies in alignment with enterprise policies.
• Integrate Velociraptor into existing incident response and SOC workflows.
• Optimize Velociraptor performance, resource usage, and configuration for diverse environments (Windows, macOS, Linux).
• Develop and maintain deployment playbooks, engineering documentation, and runbooks.
• Provide knowledge transfer and training to security operations teams.
• Participate in troubleshooting and support during initial rollout and post-deployment stabilization.

Qualifications:

• 5+ years in cybersecurity engineering with endpoint tooling experience.
• Deep knowledge of Windows internals and endpoint architecture.
• Hands-on experience with Velociraptor, Osquery, EDRs, or DFIR tooling strongly preferred.
• Familiarity with Rapid7 technologies is a plus.
• Proficient in scripting (Python, PowerShell, Bash) for automation and deployment.
• Experience in large-scale endpoint rollouts (10,000+ endpoints).
• Excellent documentation, communication, and cross-team collaboration skills.