Overview
Accepts corp to corp applications
Contract - 6+ month(s)
Skills
EDR/XDR
IntuneMDM
SCCM
JAMF
Job Details
EndPoint Security Engineer
Location- Initially 2-3 weeks Onsite at-Sunnyvale, CA. Then remote
Duration-Long Term
Contract C2C/W2
Location- Initially 2-3 weeks Onsite at-Sunnyvale, CA. Then remote
Duration-Long Term
Contract C2C/W2
Key Responsibilities
1. Endpoint Security Architecture & Design
- Review and enhance endpoint architecture, including AV, EDR solutions.
- Evaluate endpoint configuration, control enforcement, coverage, and security baselines.
- Assess integration of endpoint platforms with SIEM, SOAR, Active Directory, Intune/MDM, and CMDB.
- Review architectural components, telemetry flow, and sensor deployment methodology.
- Validate data exchange between endpoint security tools and central monitoring systems.
2. Policy & Governance
- Ensure endpoint security operations align with organizational security policies.
- Review and update endpoint security policies aligned with NIST standards.
- Validate roles & responsibilities across IT, SecOps, and endpoint management teams.
- Evaluate policy coverage including patching, EDR/AV, device onboarding, and compliance.
3. Endpoint Operations & Integration
- Assess GPOs, MDM/Intune policies, device configuration profiles, and enforcement controls.
- Review endpoint discovery & profiling mechanisms to identify unmanaged/rogue devices.
- Validate tagging, categorization, and asset mapping across EDR platforms and CMDB.
- Check integration with NAC, SIEM, AD, vulnerability management, and patching tools.
4. Risk Management, Patching & Compliance
- Review patch management and vulnerability remediation processes across endpoints.
- Verify endpoint compliance monitoring, dashboards, and alerting workflows.
- Assess patching SLAs, automation processes, and compliance reporting.
Skills & Qualifications
Technical Skills
- Strong expertise in EDR/XDR platforms (e.g., CrowdStrike, Defender for Endpoint, Trellix, SentinelOne).
- Hands-on experience with Intune/MDM, SCCM, JAMF, or similar device management tools.
- Solid understanding of SIEM/SOAR platforms and AD integration.
- Strong knowledge of NIST CSF, NIST 800-53/171, CIS benchmarks, and endpoint hardening.
- Familiarity with NAC, vulnerability management, and patching tools (Tenable, Qualys, BigFix, etc.).
- Experience designing endpoint security architectures for large enterprises
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.