Enterprise Security Engineer - W2

Job Overview

We are on the lookout for a seasoned Senior Endpoint Security Engineer to become an integral part of our esteemed security team. This role demands a comprehensive technical expertise along with a nuanced understanding of policy-based solutions. As a pivotal contributor, you will play a crucial role in enhancing the security landscape across both Windows and mobile environments within a large-scale organization.

Key Responsibilities

• Identify, remediate, and mitigate security vulnerabilities across workstations and mobile devices.
• Conduct comprehensive testing and provide support for essential applications and operating system updates to resolve security vulnerabilities.
• Collaborate closely with business units to engineer secure solutions tailored to specific business requirements.
• Develop and document security benchmark standards and implement best practices for endpoint devices.
• Partner with IT teams to manage security risks in alignment with corporate standards and service level agreements (SLAs).
• Proactively address vulnerabilities prior to production, ensuring systems are fortified against potential threats.
• Oversee a test group of over 1,000 endpoints, including alpha testing of new patches and updates.
• Execute vulnerability assessments for software and hardware, including laptops, desktops, tablets, and mobile devices.
• Coordinate the scheduling and rollout of application versions, operating system updates, and security patches with minimal disruption to operations.
• Implement and adhere to industry best practices for endpoint hardening, focusing on established security frameworks such as STIG, NIST, and CIS.
• Engage in IT audits to ensure compliance with PCI, HIPAA, and other regulatory requirements while upholding security measures.
• Cultivate a positive collaborative environment by fostering strong relationships with team members and openly seeking feedback.
• Maintain thorough documentation of all security engineering tasks and solutions to ensure clarity and consistency throughout the organization.
  
  

Required Skills

• A Bachelor's degree or equivalent experience in a relevant field, complemented by current industry certifications.
• A minimum of 5 years of experience in security engineering for desktop and mobile infrastructures within expansive enterprise environments.
• Practical experience with Active Directory, MDM, SCCM, GPOs, Windows 10⁄11, and various mobile platforms (iOS, macOS, Android).
• Strong proficiency in vulnerability management, including prioritization and remediation of CVE vulnerabilities on endpoint systems.
• Proven experience in implementing security benchmarks (STIG, NIST, CIS) with minimal user impact.
• Extensive experience conducting regression testing for enterprise applications and addressing security vulnerabilities.
• Familiarity with vulnerability detection tools such as Qualys or Nessus is advantageous.
• Knowledge of application packaging and PowerShell scripting is desirable.
  
  

Career Growth Opportunities

Joining our organization offers you a unique chance to significantly impact our security efforts and advance your career within a large and respected company. Opportunities for professional growth and development are plentiful as we encourage continuous learning and improvement.

Company Culture And Values

We pride ourselves on cultivating a collaborative and supportive work environment where every team member’s contribution is valued. Our commitment to diversity and inclusion fosters a culture where innovative ideas can thrive.

Networking And Professional Opportunities

As part of our team, you will have access to a vast professional network and numerous opportunities for skill development. Engaging with industry experts and participating in collaborative projects will enhance your professional journey.

Work Environment & Schedule

• Work Schedule: Hybrid (2 days onsite, 3 days remote).
• Location: Initially, the role requires two onsite days per week for training and team integration at locations in Chicago (either at the Chicago Reservation Center or Willis Tower). After the initial training period, employees may choose their two onsite days per week.
• Flexible work hours (e.g., 8 a.m. - 5 p.m. or 9 a.m. - 6 p.m.) with a one-hour unpaid lunch break.
  
  

Additional Information

You will be engaging in a collaborative and supportive team environment while having the opportunity to make a profound impact on our organization’s security posture.

Employment Type: Full-Time