About Workato

Workato transforms technology complexity into business opportunity. As the leader in enterprise orchestration Workato helps businesses globally streamline operations by connecting data processes applications and experiences. Its AI-powered platform enables teams to navigate complex workflows in real-time driving efficiency and agility.

Trusted by a community of 400000 global customers Workato empowers organizations of every size to unlock new value and lead in todays fast-changing world. Learn how Workato helps businesses of all sizes achieve more at .

Why join us

Ultimately Workato believes in fostering a flexible trust-oriented culture that empowers everyone to take full ownership of their roles. We are driven by innovation and looking for team players who want to actively build our company.

But we also believe in balancing productivity with self-care. Thats why we offer all of our employees a vibrant and dynamic work environment along with a multitude of benefits they can enjoy inside and outside of their work lives.

If this sounds right up your alley please submit an application. We look forward to getting to know you!

Also feel free to check out why:

• Business Insider named us an enterprise startup to bet your career on

• Forbes Cloud 100 recognized us as one of the top 100 private cloud companies in the world

• Deloitte Tech Fast 500 ranked us as the 17th fastest growing tech company in the Bay Area and 96th in North America

• Quartz ranked us the #1 best company for remote workers

Responsibilities

At Workato security is foundational to our mission. We are seeking a proactive and detail-oriented Security Engineer Endpoint Security to join our expanding Security team in this role you will be responsible for managing and optimising endpoint security capabilities across our global environment.

Your primary responsibility will be to own the lifecycle of Endpoint Detection and Response (EDR) platformswith SentinelOne preferredincluding configuration policy management and continuous tuning to enhance our protection and detection posture. You will ensure endpoints remain hardened compliant and resilient against evolving threats by integrating security controls closing vulnerabilities and maintaining consistent security baselines across Windows macOS and Linux systems.

As a key member of the security operations ecosystem you will collaborate closely with IT Cloud Security Threat Detection and Incident Response team members to enrich detection capabilities support audits and strengthen endpoint visibility across the organisation.

If you are passionate about building robust endpoint defences modernising detection strategies and driving scalable security automation this role is an excellent opportunity for you!

You will also be responsible to:

• Configure maintain and optimise the organisations Endpoint Detection and Response (EDR) platform with SentinelOne preferred.

• Create refine and tune EDR detection rules behavioural analytics and threat-hunting logic aligned with the MITRE ATT&CK framework.

• Ensure endpoints across Windows macOS and Linux remain up to date with the latest security patches agent versions and configuration baselines.

• Develop and enforce endpoint security policies OS-hardening standards and configuration baselines.

• Create and maintain Agent Installation SOPs for multiple operating systems to support consistent deployment by IT teams.

• Monitor endpoint posture identify vulnerabilities and ensure timely remediation within defined SLAs.

• Manage and troubleshoot CASB solutions (Zscaler preferred) including policy configuration performance tuning and access control.

• Implement and optimise Data Loss Prevention (DLP) controls on endpoints and within CASB platforms.

• Apply strong knowledge of data classification sensitivity labels and adaptive protection controls to safeguard sensitive data across devices.

• Manage and maintain email security solutions anti-phishing controls and authentication mechanisms such as DMARC DKIM and SPF.

• Define and support email security workflows triage methodologies and automated mitigation steps to address email-based threats.

• Automate operational tasks and workflows using scripting languages (Python PowerShell Bash) or Workato automation recipes.

• Maintain detailed documentation for endpoint security policies baselines detections and troubleshooting procedures.

• Support internal and external audits (SOC 2 ISO 27001 customer audits) by providing required logs configurations and evidence.

• Stay current with emerging threats vulnerabilities and advancements in endpoint CASB and EDR security technologies.

Requirements

Qualifications / Experience / Technical Skills

• 3 to 6 years of hands-on experience in endpoint security EDR management device hardening or security engineering in cloud-based or SaaS environments.

• Proven expertise with EDR platforms especially SentinelOne including rule tuning policy configuration and threat detection optimisation.

• Strong experience with endpoint hardening across Windows macOS and Linux.

• Solid understanding of DLP implementation data protection techniques sensitivity labels and data classification frameworks.

• Strong hands-on experience with CASB solutions preferably Zscaler including policy configuration troubleshooting performance tuning and DLP integration.

• Working knowledge of cybersecurity frameworks including MITRE ATT&CK CIS Benchmarks and NIST guidelines.

• Familiarity with compliance frameworks such as SOC 2 ISO 27001 and GDPR.

• Hands-on experience with scripting/automation using Python PowerShell Bash or Workato automation.

• Experience with email security technologies and phishing defence mechanisms.

• Relevant certifications such asSentinelOne CompTIA Security CySA GIAC CCSP or other endpoint/cloud security certifications.

Soft Skills / Personal Characteristics

• Strong problem-solving and analytical skills with an automation-first mindset.

• Excellent communication and collaboration skills to work across teams.

• Ability to work independently and manage multiple tasks effectively in a fast-paced environment

(REQ ID: 2462)