diff --git a/docs/protections-team/README.mdx b/docs/protections-team/README.mdx
index 77bd7cf093bc622..95b0f73dae04d44 100644
--- a/docs/protections-team/README.mdx
+++ b/docs/protections-team/README.mdx
@@ -14,7 +14,7 @@ The Protections Team is made up of four sub-teams:
 
 | Team Name                 | Slack                                                                       |
 | ------------------------- | --------------------------------------------------------------------------- |
-| Endpoint Protections      | [#endpoint-protections](https://elastic.slack.com/archives/CNVNGEWDR)       |
+| Endpoint Protections      | [#protections](https://elastic.slack.com/archives/CP92S0JJK)                |
 | Intelligence & Analytics  | [#intelligence-and-analytics](https://elastic.slack.com/archives/CP30L4XH8) |
 | Security ML               | [#security-ml](https://elastic.slack.com/archives/CPCJQL2C8)                |
 | Security Data Engineering | [#sec-data-eng](https://elastic.slack.com/archives/CP9GSPHRU)               |
@@ -49,6 +49,7 @@ The Protections Leads are:
 ### Onboarding
 
  - [SDE team onboarding guide](/docs/protections-team/sde/onboarding.mdx)
+ - [Endpoint Protections onboarding document](https://docs.google.com/document/d/1VEqMeg5B1pT-d_GMI-DvCopCXHGtrFXomG4BDCEj_Hs/edit?usp=sharing)
  - [Intro to Elastic Performance and Recognition](/docs/protections-team/performance-and-recognition.mdx)
  - [Security Team FAQ](/docs/common/frequently-asked-questions.mdx)
 
diff --git a/docs/protections-team/endpoint-protections-team.mdx b/docs/protections-team/endpoint-protections-team.mdx
index 3b60bc886bd13c0..5b4579890819385 100644
--- a/docs/protections-team/endpoint-protections-team.mdx
+++ b/docs/protections-team/endpoint-protections-team.mdx
@@ -2,19 +2,18 @@
 
 ## Team
 
-| Role | Name | Region |
-| --- | --- | --- |
-| Team Lead | Mark Mager | NASA |
-| | Aaron Lamb | NASA |
-| | Gabriel Landau | NASA |
-| | Joe Desimone | NASA |
-| | Ross Wolf | NASA |
-| | Will Burgess | EMEA |
-| | John Uhlmann | APJ |
+| Name | Region |
+| --- | --- |
+| Aaron Lamb | NASA |
+| Ayoub Faouzi | APJ |
+| Chris Alladoum | NASA |
+| John Uhlmann | APJ |
+| Mark Mager | NASA |
+| Wei Chong Tan | APJ |
 
 ## Communicate with Us
 
-- [#endpoint-protections](https://elastic.slack.com/archives/CNVNGEWDR)
+- [#protections](https://elastic.slack.com/archives/CP92S0JJK)
 
 ## Our Process
 
@@ -23,8 +22,8 @@
   - CI / CD through Jenkins
     - Multiple testing frameworks
       - Gtests
-      - EAF
-      - BTS
+      - EAF (Elastic)
+      - BTS (Endgame)
   - Monitoring of alert rates / unique alerts via Kibana Discover / Dashboards
   - Engagement with customer success to identify and remedy customer issues
 - How do you engage with UX design?
@@ -34,7 +33,7 @@
 - How do you interact with product management?
   - Team Lead sits in weekly meetings which PM attends throughout the release cycle. Any deviations from the norm are identified and addressed proactively to make adjustments to the release schedule as needed
 - How do you track internal priorities?
-  -
+  - [Endpoint Protections Release Planning spreadsheet](https://docs.google.com/spreadsheets/d/1kmjStzhbeDW291Y1JCfj-sU8zDEV73YyNY2jURycH3I/edit?usp=sharing)
 - How do you track external roadmap?
   - NGAV roadmap
     - Documentation
@@ -45,7 +44,8 @@
     - #endpoint-protections
     - #elastic-endpoint-int
   - Zoom
-    - Sync meetings; 1:1s
+    - Weekly sync meetings
+    - Weekly 1:1s
   - Google Docs
     - Shared docs for live note taking during meetings
   - GitHub
@@ -55,7 +55,7 @@
   - Gmail
     - Very rare; usually reserved for more formal communication among Protections / Security
 - When do you meet?
-  - 30 minute team sync Mondays at 11:00 am ET
+  - 30 minute team sync Mondays at 3:00 pm ET
   - 60 minute planning session before development cycle begins
 - How do you hire and onboard?
   - Hiring
@@ -71,9 +71,14 @@
     - Candidate debrief follows with recruiter and interviewers
       - Upon completion, consensus should be reached on hire / no hire
   - Onboarding
-    - TBD
+    - Team Lead communicates with new hire prior to start date
+    - Team Lead coordinates equipment, software purchase ahead of time with IT
+    - Team Lead works with last new hire to update onboarding template document
+    - Updated onboarding document sent to new hire before start date
+    - Team Lead schedules 1:1s for new hire during first few weeks to meet leadership within Security org
 - Where do you document stuff?
   - Github readmes
+  - Endpoint Protections google drive directory
 - How do you handle learning & development?
   - ON-Week
   - Spacetime
@@ -104,7 +109,7 @@
 - How do you triage issues found internally by the productivity team?
   - No formal process
 - How often do you present the work in progress to Product Management and get feedback on it?
-  -
+  - Brief updates provided at unified app release sync meeting
 - How do you initialize cross-team collaborations within Security?
   - No formal process; varies with each task
 - How do you initialize cross-team collaborations outside Security?
@@ -113,4 +118,4 @@
   - SDH tickets for FPs, FNs, and bugs encountered by customers
   - Bug tickets in the relevant repo (e.g. endpoint-dev)
 - How do you estimate work?
-  -
+  - Team Lead consults with Protections Tech Lead during release planning