Senior Endpoint Protection Engineer

Senior Endpoint Protection Engineer

Providing for loved ones, planning rewarding retirements, saving enough for whatever lies ahead – our policyholders count on us to be there when it matters most. It's a big ask, but it's one that we have the power to deliver when we work together. We collaborate and innovate – pushing one another to transform not just Pacific Life, but the entire industry for the better.

Why? Because it's the right thing to do. Pacific Life is more than a job, it's a career with purpose. It's a career where you have the support, balance, and resources to make a positive impact on the future – including your own.

We're actively seeking a talented Senior Endpoint Protection Engineer to join our Cloud Shared Services team in Charlotte, NC.

As a Senior Endpoint Protection Engineer you'll move Pacific Life, and your career, forward by serving as the primary administrator and operational owner of Pacific Life's endpoint protection platform. This role is responsible for ensuring reliable, secure, and effective endpoint protection through policy administration, alert response, platform health management, and integration with enterprise security and IT operations processes.

The role requires strong technical depth, disciplined execution, and the ability to work independently while partnering across Security Operations, Infrastructure, IAM, and Cloud teams.

How you'll help move us forward:

Platform Ownership & Administration

• Act as the primary administrator and subject matter expert for the endpoint protection platform
• Proactively configure, maintain, and optimize endpoint prevention and detection policies
• Manage sensor lifecycle, coverage, versioning, and health across enterprise endpoints
• Administer role-based access controls and identity integrations (e.g., SSO, RBAC)

Security Operations & Incident Support

• Execute response actions such as host containment, process termination, and IOC management in support of Security Operations and Incident Response teams activities
• Ensure alerts integrate effectively with SIEM and ITSM platforms
• Support triaging and investigating detections and alerts in coordination with Security Operations and Incident Response teams
• Partner with Security Operations and Incident Response teams on investigations and post incident reviews

Operational Excellence & Continuous Improvement

• Maintain documentation, runbooks, and standard operating procedures
• Participate in change management and risk review processes for policy updates
• Support audits, assessments, and compliance reviews related to endpoint security
• Identify opportunities to improve platform efficiency, reliability, and automation

The experience you bring:

• 3–5+ years of experience in systems or security platform administration
• Hands-on experience administering Crowd Strike Falcon or a comparable EDR platform
• Strong understanding of endpoint security concepts and incident response workflows
• Experience supporting Windows, Linux, and macOS environments
• Ability to operate independently in a production enterprise environment

What makes you stand out:

• Experience integrating endpoint security platforms with SIEM or ITSM tools
• Scripting or automation experience (Power Shell, Python, Bash)
• Experience in regulated or highly controlled environments
• Relevant security or platform certifications

Your Benefits Start Day 1

• Prioritization of your health and well-being including Medical, Dental, Vision, and Wellbeing Reimbursement Account that can be used on yourself or your eligible dependents
• Generous paid time off options including:
  Paid Time Off, Holiday Schedules, and Financial Planning Time Off
• Paid Parental Leave as well as an Adoption Assistance Program
• Competitive 401k savings plan with company match and an additional contribution regardless of participation