Sr Endpoint Security Engineer Dallas or Detroit metro

Senior Endpoint Security Engineer

The Sr. Endpoint Security Engineer is responsible for ensuring the security of all devices connected to the network. The ideal candidate would have extensive knowledge of host operating systems, including a profound grasp of their functions and security controls. The engineer is responsible for reviewing and testing current operating system configurations to develop strategies to mitigate risks and strengthen the overall security posture of the organization. Maintain and enforce endpoint security policies and standards in alignment with corporate Governance, Security-Risk and Audit policies, procedures, industry regulation, best practices, and security frameworks (e.g., ISO 27001, NIST, CIS). The engineer will also support designing, implementing, and maintaining security measures to protect these endpoints from cyber threat. This function can include, but isn't limited to: Endpoint Security Engineering, File Integrity Monitoring (FIM), Antivirus (AV)/Endpoint Detection and Response (EDR), Endpoint Management, Security Automation, and mitigate exposure to cyber threats, security risks, and unauthorized access.

The Cybersecurity Engineering function is responsible for supporting the design and implementation of Security Architecture patterns into functioning platforms and systems within Comerica. This includes the engineering, deployment, and advanced support of critical control systems, security platforms, and associated workstreams or processes. The Cyber Engineering teams collaborate closely with peers within the Cyber Defense Organization and Technology teams to enable and support Comerica's systems.

The Senior Cybersecurity Engineer is responsible for driving and ensuring the delivery of engineering efforts for distributed and complex systems. The role is focused on ensuring continual risk reduction through the application of advanced security engineering principles within their domain. The Senior Cybersecurity Engineer is expected to take ownership of a core competency, and associated platforms, to provide expert knowledge and support. The Senior Cybersecurity Engineer will also be responsible for assisting with the mentoring and technical growth of junior staff to ensure long-term departmental success.

Position Responsibilities:
Cybersecurity Engineering

• Provides extensive and complete analysis on the technical roadmaps of their respective core competency with an emphasis on the risk reduction and business enablement of their implementations.
• Drives the enhancement of documentation, process, and procedure to increase the completeness of Audit requirements and reduce time to respond to Audit requests.
• Provides expert-level incident and security response support in coordination with junior staff and their Cybersecurity Engineering Manager.
• Maintains ownership of risks or control gaps in conjunction with their Cybersecurity Engineering Manager and oversees the execution of tactical remediation plans.
• Participates in the strategic planning of their respective core competency in collaboration with other senior staff and their Cybersecurity Engineering Manager.
• Ensures the enhancement and configuration of security platforms or tools to create concrete improvement and risk reduction.

Communication and Collaboration

• Develops feedback on risk identification mechanisms, gap analysis processes, roadmap creation, and knowledge management for the Cyber Engineering teams.
• Performs resource management with vendors, operations members, and management to ensure sustainable departmental success.
• Provide technical oversight on the enhancement efforts of junior staff in the areas of automation, control design, and service resiliency.
• Translate security architectural requirements, perform impact classification of known risks, and ensure the successful delivery of projects of a medium to high complexity.
• Collaborates with stakeholders across the business to develop security solutions to existing and new business problems.
• Coordinates complex changes necessary to support enhancements to Cyber Engineering services.
• Collaborates with other Engineering and Operations teams within both the Cyber and Technology organizations to troubleshoot and respond to events, as directed by business processes.
• Provides guidance to junior staff on the appropriate escalation and communication patterns.
• Presents project and related materials to Cyber Engineering and members of Management to gather feedback and provide status as needed.

Planning and Administration

• Identify - evaluate projects/programs/initiatives - design processes that enhance - rationalize existing and upcoming solutions.
• Review and propose alternate solutions to non-standard solutions if/as applicable to meet business - applications needs.
• Review, identify - manage requirements for moderate solutions and do a cost value, feasibility, and risk analysis as appropriate.
• Keep management informed of status of on activities through accurate, timely, and appropriate reporting.
• Actively participates in committees representing the department and/or planning unit.
• Keep abreast of leading-edge technologies in the Cybersecurity engineering space.