Job Title: SentinelOne Singularity EDR - SSE
Location: Bangalore/Chennai/Hyderabad
Summary:
We are seeking a Senior Engineer specializing in SentinelOne Singularity EDR to strengthen our endpoint security posture across the organization. This role will focus on the design, deployment, administration, tuning, and advanced troubleshooting of SentinelOne EDR.
Key Responsibilities:
• Lead deployment and configuration of SentinelOne Singularity EDR across enterprise environments (Windows, Linux, macOS endpoints).
• Develop and maintain policies, exclusions, and tuning to reduce false positives while ensuring maximum threat coverage.
• Monitor, triage, and respond to alerts generated by SentinelOne, working closely with SOC and Incident Response teams.
• Integrate SentinelOne with SIEM (Splunk, Sentinel, QRadar, etc.) and SOAR platforms for enhanced detection and automation.
• Perform advanced threat hunting and root cause analysis leveraging SentinelOne Deep Visibility and MITRE ATT&CK mapping.
• Generate and maintain dashboard reports and KPIs for leadership and audit requirements.
• Stay updated with the latest threats and EDR features to recommend and implement proactive improvements.
• Collaborate with cross-functional teams to support vulnerability management and endpoint hardening efforts.
• Lead upgrade planning and testing for new SentinelOne console and agent versions.
• Provide knowledge transfer and mentoring junior analysts and engineers on SentinelOne usage and best practices.
Required Skills and Qualifications:
• 5+ years of experience in Endpoint Security, with 2+ years hands-on with SentinelOne Singularity EDR.
• Strong understanding of endpoint threat detection, response, and prevention.
• Experience in managing large-scale EDR deployments and policy configurations.
• Solid knowledge of Windows, macOS, and Linux operating systems.
• Ability to perform threat hunting, investigation, and remediation.
• Familiarity with SIEM integration and log analysis.
• Understanding of cyber kill chain, MITRE ATT&CK, and threat actor TTPs.
• Scripting knowledge (PowerShell, Python) for automation is a plus.
• Relevant certifications (SentinelOne Ranger, S1 Certified Specialist, or security certifications like GCED, GCFA, or similar) are desirable.
Preferred Skills:
• Experience in EDR migrations (from other platforms to SentinelOne).
• Exposure to SOC operations, incident response, and playbook development.
• Knowledge of Zero Trust frameworks and advanced endpoint hardening.
• Experience with API integrations for custom workflows or reporting
Together, as owners, let’s turn meaningful insights into action.
Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…
You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction.
Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.
You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.
Come join our team—one of the largest IT and business consulting services firms in the world.