Security Engineer — Endpoint Protection & DevSecOps
We're hiring a Security Engineer to strengthen our endpoint security posture and embed security across our DevSecOps pipelines. You'll work at the intersection of threat defense, automation, and secure software delivery — protecting endpoints, hardening containerized workloads, and shifting security left in the SDLC.
What You'll Do
Endpoint Protection & Threat Response
- Implement, configure, and manage endpoint protection platforms (EPP/EDR) to secure laptops, servers, and mobile devices against malware, ransomware, and advanced threats.
- Perform threat hunting and incident response on endpoints, including triage, investigation, isolation, and remediation of detected threats.
- Enforce endpoint hardening standards, including patch management, application whitelisting, and device configuration baselines.
- Integrate endpoint protection with vulnerability management, patch management, and threat intelligence platforms for continuous improvement.
- Develop automation scripts and tools (Python, Bash, PowerShell) to streamline endpoint security management, reporting, and remediation.
DevSecOps & Pipeline Security
- Design and operate secure DevSecOps pipelines with embedded verification, scanning, and security controls.
- Integrate application, container, and infrastructure security tools throughout the SDLC to ensure early detection of vulnerabilities.
- Build and maintain containerized workloads using Docker and Kubernetes, incorporating security best practices.
- Utilize CI/CD platforms (Jenkins, GitLab CI, GitHub Actions) to support automated build, deployment, and security scanning.
- Implement monitoring, logging, observability dashboards (ELK), alerting, and automated incident response workflows across cloud, containerized, and on-prem environments.
What We're Looking For
- Hands-on experience with EPP/EDR platforms (e.g., CrowdStrike, SentinelOne, Microsoft Defender for Endpoint, or similar).
- Strong scripting skills in Python, Bash, and PowerShell for automation and tooling.
- Working knowledge of Docker, Kubernetes, and container security practices.
- Experience with CI/CD platforms (Jenkins, GitLab CI, or GitHub Actions) and integrating security scanning into pipelines.
- Familiarity with the ELK stack or equivalent observability and logging tools.
- Understanding of incident response workflows, threat hunting techniques, and endpoint forensics.
- Solid grasp of vulnerability management, patch management, and threat intelligence integration.
Nice to Have
- Industry certifications such as GCIH, GCFA, OSCP, CKS, or equivalent.
- Experience with SIEM/SOAR integration and automated playbook development.
- Exposure to compliance frameworks (CIS, NIST, ISO 27001, PCI DSS).
