Cybersecurity Engineer (Endpoint & Incident Response) - Contract

Job Description

Job Title: Cybersecurity Engineer (Endpoint & Incident Response) 

Job Level: Individual Contributor | Mid‑Level (2–5 Years Experience)

Location: Boston, MA (On‑site 4 days a week on site minimum)

Department: Information Security / Cybersecurity Operations

Position Summary

We are seeking a Cybersecurity Engineer with 2–5 years of hands‑on experience supporting endpoint security, incident response, and security operations in a regulated enterprise environment. This role will be a key contributor within day‑to‑day cybersecurity operations, partnering closely with the Cyber Security Operations Center (CSOC) to detect, analyze, and respond to security incidents across the enterprise.

The ideal candidate has strong experience with endpoint management, EDR/XDR platforms, data loss prevention (DLP), and vulnerability management tools, and is comfortable operating in environments subject to regulatory and compliance requirements. This position requires both technical depth and the ability to collaborate across security, IT, and compliance teams.

Key Responsibilities

Incident Response & Security Operations

• Act as a primary responder for endpoint‑related security incidents, coordinating closely with the CSOC on investigation, containment, eradication, and recovery activities.
• Monitor, triage, and respond to alerts generated from EDR/XDR, DLP, and endpoint management platforms.
• Perform in‑depth analysis of endpoint telemetry to identify malicious activity, lateral movement, and indicators of compromise (IOCs).
• Support incident documentation, root cause analysis, and post‑incident reviews to improve detection and response capabilities.

Endpoint & Detection Tooling

• Administer and operate endpoint security and management tools, including but not limited to:
• CrowdStrike (EDR/XDR, threat hunting, response actions)
• Microsoft Intune (endpoint management, policy enforcement, device compliance)
• Forcepoint (DLP monitoring, policy tuning, incident handling)
• Tune detection logic, alert thresholds, and response workflows to reduce false positives while maintaining strong security coverage.
• Collaborate with engineering and IT teams to ensure secure endpoint configurations and enforcement of security baselines.

Vulnerability Management

• Support vulnerability management activities using tools such as Tenable, including:
• Scanning endpoints and systems
• Analyzing vulnerability findings
• Assisting with risk prioritization and remediation tracking
• Partner with infrastructure and application teams to validate remediation and reduce exposure.

Regulatory & Compliance Support

• Operate within a regulated environment, ensuring security controls align with internal policies and external regulatory requirements.
• Assist with evidence collection, control validation, and audit support related to endpoint security, incident response, and vulnerability management.
• Ensure security processes and response activities are documented and repeatable.

Collaboration & Continuous Improvement

• Work closely with CSOC analysts, threat intelligence, IT operations, and compliance teams to improve detection, response, and operational maturity.
• Contribute to the development and refinement of runbooks, playbooks, and standard operating procedures (SOPs).
• Stay current on emerging threats, attack techniques, and endpoint security best practices.

Required Qualifications

Experience

• 2–5 years of professional experience in cybersecurity operations, incident response, or endpoint security.
• Hands‑on experience with:
• Endpoint Management tools (e.g., Intune or equivalent)
• EDR/XDR platforms (e.g., CrowdStrike)
• DLP solutions (e.g., Forcepoint)
• Vulnerability management tools (e.g., Tenable)
• Experience working in a regulated or compliance‑driven environment.

Technical Skills

• Strong understanding of endpoint security concepts, attacker techniques, and incident response lifecycle.
• Ability to analyze security alerts, logs, and telemetry to determine impact and severity.
• Familiarity with Windows endpoint security controls and enterprise endpoint architectures.
• Working knowledge of vulnerability scanning, prioritization, and remediation processes.

Soft Skills

• Strong communication skills with the ability to explain technical issues to both technical and non‑technical stakeholders.
• Ability to work effectively under pressure during active security incidents.
• Collaborative mindset with a strong sense of ownership and accountability.

Preferred Qualifications

• Experience working directly with or embedded alongside a CSOC.
• Exposure to threat hunting or proactive detection activities.
• Security certifications such as Security+, GSEC, GCED, GCIA, or similar (not required but preferred).
• Experience supporting audits or regulatory assessments.

What We Offer

• Opportunity to work in a mature cybersecurity program with modern tooling.
• Exposure to real‑world incident response and enterprise‑scale security operations.
• Professional development, training, and certification support.
• Competitive compensation and benefits package.

Pay Range

$70-$76/HR

Requisition Disclaimer

This job posting is for a temporary role with a third-party agency partner on assignment at Vertex Pharmaceuticals (“Vertex”). The individual selected for this role will be offered the role as an employee of a third- party agency partner; compensation, medical benefits, fringe benefits and other terms and conditions of employment shall be presented by the third-party agency partner upon offer. The pay rate range provided is a reasonable estimate of the anticipated compensation range for this job at the time of posting. The actual pay rate will be based on a number of factors, including skills, competencies, experience, location and/or being pursued and other job-related factors permitted by law. In addition, this role will be eligible for overtime pay, in accordance with federal and state requirements

By applying for this position, you agree to the Atrium Terms and Conditions and you direct Atrium to share your application materials, which may include your CV/Resume, email address or phone number, with Vertex. For more information on how Vertex handles your personal data related to your job application, please see Vertex’s Careers Privacy Notice.   Agreeing to the Atrium Terms and Conditions, includes permission to use the email address and mobile phone number you provide during the application process or throughout the duration of your prospective or actual employment to notify you of job openings, profiles, articles, news, and other employment-related information, as well as to notify you of special promotions or additional products and services offered by us or our affiliates and partners

(collectively, “Atrium Alerts”). Atrium Alerts may be sent by email, phone, or text message. Your personal information will be safely stored within the Atrium & Vertex databases. Atrium does not sell your personal information to third parties. Text message and data rates may apply. To OPT OUT of text messaging or to modify your communication preferences for Atrium Alerts at any time, please contact Atrium at privacyadministrator@atriumstaff.com.

If you do not agree with the Atrium Terms and Conditions, you can still complete your application for this position by emailing your resume to our team at tempstaffing@vrtx.com. Please include the job title in the subject of your email.

No C2C or Third-Party Vendors