Position Summary:
We are seeking a skilled Endpoint Security Engineer to support the deployment of modern technologies and processes aimed at enhancing enterprise endpoint security. This role will focus on implementing and maintaining endpoint protection tools, including Microsoft security solutions, antivirus, and vulnerability management platforms. The ideal candidate will have a strong understanding of patch management, CVSS v3 scoring, risk assessment, and endpoint threat mitigation strategies.
Key Responsibilities:
Monitor and respond to security events, identifying and mitigating threats to endpoint systems.
Analyze current security technologies and design robust processes to prevent unauthorized access to networks and systems.
Support automation and orchestration to streamline operations and reduce manual workloads.
Develop and implement proactive countermeasures to protect data, assets, and personnel.
Oversee a comprehensive enterprise-wide logging and monitoring framework.
Document and report security incidents, including root cause analysis and post-incident reviews.
Manage Security Administrators handling tools such as firewalls, IDS/IPS, VPNs, endpoint protection, cloud security platforms, IAM systems, and physical security integrations.
Collaborate with system owners to remediate vulnerabilities and strengthen defenses against emerging threats.
Ensure new business applications and services are equipped with effective security logging and reporting.
Communicate complex technical threats and incidents clearly to both technical teams and business stakeholders.
Define and report on key performance indicators and metrics aligned with security and business goals.
Participate in change management and risk mitigation strategy discussions.
Utilize breach and attack simulation tools to test and enhance incident response and preventative controls.
Apply MITRE ATT&CK framework and cyber kill chain methodologies to identify indicators of compromise and guide remediation.
Foster continuous learning, skill sharing, and collaboration within the security team.
Perform additional duties as needed.