Stefanini Group is looking for Sr Endpoint Security Engineer for a globally recognized company! For interested applicants, click the apply button or you may reach out to Alfher Hidalgo at / for faster processing. Thank you!
We're looking for a Senior Endpoint Security Engineer to own and evolve our endpoint security and identity ecosystem across a modern, cloud-first environment.
This is a high-impact role where you'll lead strategy and hands-on execution across:macOS endpoint management (Jamf Pro)Apple Business ManagerIdentity platforms (Entra ID, Okta, Google Workspace)EDR/XDR (CrowdStrike or similar, including managed SOC integrations)
You'll help drive Zero Trust architecture, automate device lifecycle management, and improve enterprise security posture at scale.
What You'll Do
Endpoint Security (macOS-Focused)Own and manage Jamf Pro for macOS fleet (configuration, compliance, patching)Lead Apple Business Manager integration for automated device enrollment & lifecycleImplement endpoint hardening (CIS benchmarks, encryption, policy enforcement)
Threat Detection & ResponseDeploy & optimize CrowdStrike (or equivalent EDR/XDR)Partner with MDR/MSSP providers for 24/7 threat coverageInvestigate alerts, tune detections, and improve response playbooks
Identity & Access (Zero Trust Enablement)Integrate and manage:Microsoft Entra ID (Azure AD)Okta (SSO, MFA, lifecycle)Google Workspace (existing identity layer)Build conditional access policies tied to device postureEnable seamless SSO and identity federation
Automation & IntegrationAutomate provisioning/deprovisioning across Jamf, Okta, Entra ID, Google WorkspaceBuild scripts (Python/Bash) and API integrationsIntegrate with SIEM/SOAR platforms (e.g., Sentinel, Splunk)
Compliance & GovernanceSupport SOX / SOC 2 / ISO audit readinessMaintain endpoint and identity security documentationDeliver reporting on device compliance, vulnerabilities, and incidents
Required Experience5+ years in endpoint security or endpoint engineeringStrong hands-on experience with:Jamf Pro (macOS management is a must)Apple Business ManagerCrowdStrike or similar EDR/XDRIdentity platform experience:Entra ID (Azure AD)OktaExperience in Google Workspace environmentsSolid understanding of Zero Trust and endpoint security frameworksScripting: Python, Bash, or PowerShell
Nice-to-Haves (Stand Out Candidates)Jamf / CrowdStrike / Okta certificationsExperience with MDR/MSSP environmentsSIEM tools (Splunk, Sentinel)Experience in SOX-compliant environmentsAPI integrations across security platforms
#LI-REMOTE
#LI-AH1
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
- Dice Id: 10106616
- Position Id: 63896
- Posted 1 hour ago
Never miss an opportunity! Create an alert based on the job you applied for.
