Skills

PowerShell Incident Response Endpoint Security Configuration Management Data collection Architecture Windows Active Directory

Job Specifications

Endpoint Migration Specialist
Location: Remote/Northampton(as required)
Contract Type: 3 months initially
Rate:£380.00 per day inside IR35
Overview:
A global retail client is seeking an experienced IT contractor to support the migration of its endpoint security solution from Sophos EDR to SentinelOne. The successful candidate will play a critical role in ensuring a seamless, secure transition across 10,500 endpoints, with zero security gaps.
Key Responsibilities/Deliverables:
Endpoint Migration Strategy:
Develop and execute a detailed migration plan from Sophos EDR to SentinelOne.
Validate compatibility with existing infrastructure including Active Directory, Group Policy, SCCM, and Intune.
Agent Deployment & Automation:
Automate SentinelOne agent deployment using PowerShell and Microsoft Intune.
Configure agent policies for Windows endpoints, including custom exclusions, data collection, web control, Firewall policy, DLP, and performance tuning.
Policy & Configuration Management:
Design granular policy sets for different business units and apply role-based access control (RBAC) for the SentinelOne console.
Implement network isolation, script control, device control, and threat protection policies.
Threat Detection & Incident Response:
Configure heuristic and behavioral detection for advanced threat protection.
Perform root cause analysis, rollback operations, and containment during security incidents.
Security Hardening:
Apply zero-trust principles and endpoint hardening best practices.
Validate SentinelOne deployment against CIS benchmarks and internal client security standards.
Troubleshooting & Post-Migration Support:
Diagnose complex deployment issues, including network latency and agent conflicts.
Provide knowledge transfer and technical documentation for the internal IT team.
Desirable Technical Experience:
Proven experience migrating Sophos EDR or similar EDR/XDR platforms.
Strong Scripting skills (PowerShell, PatchMyPC) for automation and API integration.
Familiarity with Active Directory, Intune, and enterprise-scale deployments.
Deep understanding of EDR/XDR architecture, threat hunting, and incident response workflows.

About the Company

Our mark, your success. IDPP has been established for over 37 years, and during that time we have become experts in the IT and Telecoms industries supporting customers with a variety of bespoke services. Initially providing only contingency resources, IDPP began to reinvent itself some 5 years ago by moving into the services arena with the provision of fixed price projects and work package solutions. A brief synopsis of our current client services includes:- -Fixed Priced Project & Work Packages -Managed Services -Contra... Know more