Job Description - Manager, Security Engineering (Systems & Endpoint Security)

Role Summary

The Manager, Security Engineering (Systems Security) is responsible for leading and overseeing enterprise-scale security engineering functions for endpoint, identity, and systems security platforms. This role owns the design, engineering, deployment, and lifecycle management of critical security controls including Microsoft Exchange Online Protection (EOP), SCCM-based agent deployment, IAM solution agents, and SentinelOne endpoint protection.

The role provides technical leadership, operational governance, and delivery accountability to ensure secure, scalable, and compliant rollout of security agents and controls across the enterprise, aligned with Zero Trust principles and regulatory requirements.

Key Responsibilities - Security Engineering Leadership

Lead and manage systems and endpoint security engineering teams, providing technical direction, mentoring, and performance oversight.

Own engineering standards, deployment models, and operational readiness for systems security platforms.

Serve as the primary engineering escalation point for endpoint and identity security initiatives.

Endpoint & Systems Security Platforms

Oversee enterprise engineering and rollout of SentinelOne endpoint protection agents, ensuring coverage, health, policy compliance, and performance optimization.

Lead Microsoft SCCM / Endpoint Configuration Manager-based deployment of security agents and system hardening controls.

Drive secure implementation and optimization of Microsoft Exchange Online Protection (EOP) for email threat protection.

Ensure seamless deployment of IAM solution agents including PAM, IGA, and endpoint integrations.

Architecture, Design & Standards

Define and enforce secure engineering architectures, deployment patterns, and configuration baselines.

Partner with Security Architecture, IAM, Cloud, and Infrastructure teams to align solutions with Zero Trust and least-privilege principles.

Create and maintain SOPs, runbooks, standards, and design documentation.

Operational Excellence & Risk Management

Ensure availability, reliability, and scalability of systems security platforms.

Identify and remediate agent deployment gaps and configuration drift.

Support security incidents, threat response, and forensic investigations related to endpoint security.

Drive automation and continuous improvement initiatives.

Required Skills & Experience

10-15 years of experience in security engineering, systems security, or endpoint security.

5+ years of experience in an engineering leadership or manager role.

Hands-on and architectural experience with SentinelOne, SCCM, Microsoft EOP, and IAM agent integrations.

Strong knowledge of Windows, Active Directory, Azure / Entra ID, and endpoint hardening.

Experience with scripting and automation using PowerShell or APIs.

Preferred Qualifications

Experience in healthcare or other highly regulated environments.

Exposure to Zero Trust architectures and endpoint security modernization.

Certifications such as CISSP, Azure Security, Microsoft Security, or endpoint security certifications.

Leadership & Behavioral Competencies

Strong engineering judgment with the ability to balance security, stability, and scale.

Ability to translate business and risk requirements into practical engineering solutions.

Clear communicator with technical and executive stakeholders.

Ownership mindset with a strong focus on execution and resilience.