Endpoint Security Engineer

overview

we are seeking a skilled endpoint security engineer with expertise in endpoint security technologies to join our fortune 500 client's security team.

the ideal candidate will be responsible for deploying, managing, and optimizing security tools across enterprise endpoints. This role focuses on ensuring robust protection against threats through advanced solutions such as antivirus (av), endpoint detection & response (edr), cyber asset attack surface management (caasm), and vulnerability management platforms.

• endpoint security deployment & management
  • implement and maintain enterprise-grade av and edr solutions across all endpoints.
  • configure policies, rules, and alerts to ensure optimal security posture.
  • monitor and troubleshoot endpoint security tools for performance and compliance.
  • experience with windows defender attack path remediation and exposure management
• vulnerability management
  • conduct regular vulnerability scans and assessments.
  • collaborate with it and application teams to remediate identified vulnerabilities.
  • maintain vulnerability management dashboards and reporting.
• cyber asset attack surface management (caasm)
  • integrate caasm tools to identify and manage all assets within the environment.
  • ensure accurate asset inventory and risk prioritization.
• incident response & threat hunting
  • investigate and respond to endpoint security alerts and incidents.
  • perform root cause analysis and recommend preventive measures.
  • perform investigation using siem tool such as splunk
• policy & compliance
  • develop and enforce endpoint security standards and best practices.
  • ensure compliance with regulatory and organizational security requirements.
• automation & optimization
  • identify opportunities to automate repetitive security tasks.
  • optimize configurations for performance and security effectiveness.

• bachelor’s degree in computer science, cybersecurity, or related field (or equivalent experience).
• 5+ years of experience in cybersecurity engineering with a focus on endpoint security. Any candidates must have a minimum of 5 years hand on experience supporting the back end of security technologies and be able to elaborate on their experience doing such. Analysis of front end/alerts is not needed for this role.
• must have hands-on experience with av and edr platforms (e.g., crowdstrike, sentinelone, microsoft defender).
• familiarity with caasm tools and vulnerability management solutions (e.g., tenable, qualys).
• strong understanding of windows, macos, and linux endpoint environments.
• knowledge of incident response processes and threat detection techniques.
• excellent problem-solving and communication skills.

• relevant certifications (e.g., cissp, ceh, comptia security+).
• experience with scripting and automation (powershell, python).
• exposure to siem platforms and integration with endpoint tools.

job title: endpoint security engineer

job location: new york, ny (hybrid; 3 days onsite, 2 remote)

interview mode: 1st round remote via ms teams, 2nd round onsite

duration: 6 months+ with very likely long term extension

salary range: $79-$89/hr (w2) depending on experience