About the job Security & Endpoint Engineer
Job Title: Security & Endpoint Engineer
Location: Remote / India
Experience: 5–8 Years
Employment Type: Full-Time
Notice Period: Immediate Joiners or Up to 15 Days
Role Summary
We are looking for an experienced Security & Endpoint Engineer to strengthen enterprise endpoint security across macOS, Windows, and Linux environments. The ideal candidate will play a key role in implementing endpoint security controls, browser security governance, privileged access management (PAM), device hardening, and Zero Trust initiatives.
The successful candidate will collaborate closely with Security, Infrastructure, Identity, and Endpoint Engineering teams to deploy security solutions, enhance endpoint visibility, automate security operations, and improve the organization's overall security posture.
Key Responsibilities
Browser & Endpoint Security
- Evaluate and implement enterprise browser security solutions.
- Assess browser extensions, developer plugins, and AI-enabled browser tools for security and compliance risks.
- Define governance policies, approval workflows, and allowlisting processes for browser extensions.
- Implement monitoring, reporting, and enforcement controls to prevent unauthorized extension usage and reduce client-side security risks.
- Develop operational documentation, processes, and support models for ongoing management.
Endpoint Security & Hardening
- Support enterprise endpoint security initiatives across macOS, Windows, and Linux platforms.
- Implement endpoint hardening standards and security best practices.
- Assist with vulnerability remediation, device compliance, and security policy enforcement.
- Support Zero Trust and device trust initiatives.
- Work closely with endpoint engineering teams to balance security with user productivity.
Privileged Access Management (PAM)
- Support the implementation and administration of Privileged Access Management solutions such as Delinea, CyberArk, or similar platforms.
- Assist with privileged account governance, access reviews, and least-privilege initiatives.
- Partner with Identity and Security teams to strengthen administrative access controls.
Security Operations & Compliance
- Participate in security assessments, compliance initiatives, and internal audits.
- Create and maintain technical documentation, implementation guides, and operational runbooks.
- Track remediation activities, security exceptions, and operational metrics.
- Support audit readiness and evidence collection activities.
Security Automation & Tooling
- Develop automation scripts using Python, PowerShell, Bash, or similar scripting languages.
- Integrate security tools with enterprise platforms and operational workflows.
- Build dashboards and reporting capabilities to improve visibility and operational efficiency.
Cross-Functional Collaboration
- Work closely with Security, Infrastructure, Identity, and Endpoint Engineering teams.
- Participate in vendor evaluations, proof-of-concept (POC) activities, and solution deployments.
- Present technical recommendations, implementation progress, and project updates to stakeholders.
Required Skills & Qualifications
- Bachelor's degree in Computer Science, Cybersecurity, Information Security, or a related field.
- 5–8 years of experience in Security Engineering, Endpoint Engineering, Systems Engineering, or a related domain.
- Strong knowledge of enterprise endpoint security principles and device management.
- Hands-on experience supporting macOS and Windows environments at scale.
- Experience with browser security, extension governance, and endpoint security technologies.
- Experience with endpoint management platforms such as Jamf, Microsoft Intune, FleetDM, or equivalent tools.
- Good understanding of Zero Trust architecture and least-privilege access models.
- Strong scripting skills using Python, PowerShell, Bash, or similar technologies.
- Excellent analytical, troubleshooting, and communication skills.
Preferred Qualifications
- Experience with browser extension security platforms such as KOI Security, LayerX, SQRX, or similar solutions.
- Hands-on experience with Privileged Access Management (PAM) platforms such as Delinea, CyberArk, or BeyondTrust.
- Experience with endpoint security platforms including CrowdStrike, Microsoft Defender, or SentinelOne.
- Familiarity with enterprise security technologies such as Okta, Zscaler, and Microsoft Security solutions.
- Knowledge of security frameworks including SOC 2, ISO 27001, and NIST.
- Understanding of AI security risks, browser-based AI tools, and governance controls.
Key Success Measures
- Successfully evaluate and implement enterprise browser extension security controls.
- Improve visibility and governance of browser extension usage across the organization.
- Implement effective allowlisting, monitoring, and enforcement processes.
- Contribute to endpoint security, device hardening, and Privileged Access Management initiatives.
- Deliver comprehensive documentation, operational procedures, and automation to support ongoing security operations.