Role Overview
The Cybersecurity Engineer – Endpoint Privilege Management (EPM) is a senior technical expert responsible for defining, implementing, and governing
BeyondTrust Endpoint Privilege Management (EPM) policies across all
HP-managed Windows endpoints and VDI environments.
This role serves as a
deep technical authority for endpoint privilege control, ensuring alignment with HP cybersecurity standards, regulatory requirements, and enterprise risk management objectives, while partnering closely with Endpoint Engineering, IAM/IGA, Managed Device Services, and IT Support teams.
Key Responsibilities
Technical Expertise & Policy Ownership
- Serve as the EPM subject matter expert for BeyondTrust EPM within HP.
- Define, implement, and maintain enterprise EPM security policies, including privilege elevation, software installation control, and exception handling.
- Translate cybersecurity standards and risk requirements into enforceable EPM policies.
Engineering & Operations
- Design, test, deploy, and maintain EPM policies.
- Analyze and resolve complex EPM issues related to policy behavior, agent functionality, and application compatibility.
- Partner with Intune and Managed Device Services teams to support agent deployment, upgrades, and phased rollouts.
- Establish and maintain operational procedures for EPM policy lifecycle management.
Collaboration & Enablement
- Work closely with IGA/IAM teams to align endpoint privilege controls with identity and access governance.
- Support Service Desk and Tech Café teams by defining escalation paths and policy-driven resolution approaches.
- Advise application and business teams on secure onboarding of new EPM use cases.
Required Qualifications
- 8+ years of experience in cybersecurity, endpoint security, or Windows platform security.
- Hands-on experience with BeyondTrust Endpoint Privilege Management (EPM) in a large enterprise environment.
- Strong expertise in Windows security, including:
- Privilege elevation and access control
- Local and domain security policies
- Group Policy and endpoint hardening
- Experience implementing least privilege and software installation controls at scale.
- Strong problem-solving, documentation, and stakeholder communication skills.
Key Competencies
- Endpoint Privilege Management (EPM)
- Windows Endpoint Security
- Cybersecurity Policy Engineering
- Privileged Access Governance
- Risk & Compliance Alignment
- Cross-team Technical Collaboration
Impact & Scope
- Shapes how privileged access is controlled across all HP-managed endpoints.
- Reduces endpoint-based security risk while enabling business productivity.
- Acts as a go-to expert for EPM within HP Cybersecurity and infrastructure teams.
