Mattel
Tech / AI / Software
AnalystSecurity(Endpoint&IdentityThreatProtection(EDR/ITP)
“Analyst Security( Endpoint & Identity Threat Protection (EDR / ITP) at Mattel. Skills: Endpoint Detection and Response (EDR), Identity Threat Protection (ITP), Detection engineering, Threat analysis, Scripting/Automation. Deploy, manage, and optimize Endpoint Detection and Response (EDR) and Identity Threat Protection (ITP) platforms across Mattel’s enterprise.. Develop and fine-tune behavioral analytics, detection logic, and response rules to identify and mitigate malicious activity targeting e”
What You'll Achieve.
Enhancing detection accuracy; Improving response efficiency; Strengthening the organization’s overall cyber defense posture; Safeguard enterprise systems and data from emerging threats; Improve operational efficiency; Enhance defense capabilities
Industry & Context.
Analytical skills; Investigate, contain, and remediate threats; Identify patterns and optimize detection efficacy; Identify root causes
Emergency on-call duties as required
What They're Looking For.
Must Have
3–5+ years of experience in cybersecurity engineering, focusing on endpoint and identity threat protection solutions., Hands-on experience managing enterprise-grade EDR and ITP platforms such as CrowdStrike, SentinelOne, Defender for Endpoint, or similar., Proficiency in detection engineering — developing custom detection logic, correlation rules, and behavioral analytics for endpoint and identity-based threats., understanding of endpoint operating systems (Windows, macOS, Linux) and common adversary tactics including privilege escalation and lateral movement., Experience integrating endpoint and identity controls with SIEM, SOAR, and automation workflows to improve operational efficiency., Knowledge of identity and access management frameworks such as Azure AD, Okta, SSO, and MFA., Experience performing threat analysis using IOC/IOA data, event correlation, and telemetry investigation., Proficiency in scripting or automation (Python, PowerShell, or equivalent) for detection tuning, enrichment, or response orchestration., Solid understanding of endpoint policy management, application allowlisting, device control, and system hardening best practices., Excellent analytical and communication skills with the ability to collaborate effectively across technical and non-technical teams.
Nice to Have
Bachelor’s degree in computer science, Information Security, or a related field (or equivalent experience)., Certifications such as ISC2 CC, GIAC GSEC, GCED, GCIA, or CompTIA CySA+., Experience with hybrid endpoint environments spanning on-premises, cloud, and virtual infrastructure (AWS, Azure, GCP)., Familiarity with the MITRE ATT&CK framework for mapping detections and validating coverage., Hands-on experience with SOAR or automation frameworks to streamline response processes., Experience contributing to detection and response process improvement initiatives in global enterprises.
What You'll Do.
and optimize Endpoint Detection and Response (EDR) and Identity Threat Protection (ITP) platforms across Mattel’s enterprise.
Develop and fine-tune behavioral analytics
and response rules to identify and mitigate malicious activity targeting endpoints and identities.
Integrate EDR and ITP technologies with SIEM
and other enterprise systems to enhance threat detection
Contribute to the design and implementation of endpoint and identity threat protection controls aligned with Mattel’s cybersecurity strategy.
Ensure compliance of endpoint and identity controls with internal security standards and external regulatory requirements.
Perform ongoing analysis of endpoint telemetry
and behavioral data to identify patterns and optimize detection efficacy.
Collaborate with engineering teams to improve agent performance
and interoperability across platforms and systems.
Maintain and update operational documentation
and standard procedures for endpoint and identity threat protection workflows.
Participate in post-incident reviews to identify root causes
improve detection coverage
and strengthen response processes.
Evaluate and recommend emerging endpoint and identity protection tools
and automation strategies to enhance defense capabilities.
How You'll Work.
Team & Collaboration
Collaborate with Security Operations and Incident Response teams to investigate, contain, and remediate threats in a timely and coordinated manner.; Partner with IT, Infrastructure, and Security Architecture teams to support endpoint hardening, secure configuration management, and policy enforcement.; Collaborate with engineering teams to improve agent performance, health, and interoperability across platforms and systems.; Collaborate effectively across technical and non-technical teams.
Communication Scope
Excellent communication skills; Ability to collaborate effectively across technical and non-technical teams
Applying for this Analyst Security( Endpoint & Identity Threat Protection (EDR / ITP) role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on SmartRecruiters
- SmartRecruiters often includes a video screening step — check camera and mic permissions.
- Link your GitHub or portfolio directly in the profile section for technical roles.
- Applications may be reviewed by AI scoring before reaching a recruiter — use keywords from the job description.
ANONYMOUS · UNFILTERED
What do employees actually say about Mattel?
Real rants from real employees. Read before you apply.