Endpoint Engineer

Endpoint Security Engineer Endpoint Management (100% Remote US)

Job Summary
We are seeking a skilled Endpoint Security Engineer to own administration monitoring and optimization of enterprise XDR/EDR and patch management platforms. This remote role ensures security compliance reliability and performance of endpoints servers cloud workloads and Kubernetes environments while leveraging AI-driven capabilities for proactive threat detection and response.

Key Responsibilities

XDR / Endpoint Security Operations
- Administer and optimize primary **XDR platform** (SentinelOne or equivalent) across Windows macOS Linux and Kubernetes.
- Deploy maintain and upgrade agents; monitor console for health compliance and security events.
- Investigate alerts support incident response containment and remediation.
- Evaluate and implement AI-powered features for improved detection reduced noise and automated workflows.

Patch Management & Vulnerability Remediation
- Own full patching lifecycle using **Tanium** (or equivalent): assessment testing deployment verification and reporting.
- Track compliance application inventory and rapidly mitigate zero-days and high-risk CVEs.
- Coordinate with teams to minimize business impact while maintaining strong security posture.

Systems Engineering & Support
- Perform enterprise-scale system administration for Windows macOS and Linux.
- Serve as Tier-3 escalation for endpoint and security issues.
- Manage vendor relationships and platform escalations.

Automation & Documentation
- Develop automation scripts (PowerShell Python Bash) to streamline operations.
- Maintain runbooks SOPs and technical documentation.
- Mentor junior engineers and participate in on-call rotation.

Required Skills & Experience

Core Technical Skills
- 35 years enterprise experience in endpoint security or systems engineering.
- Hands-on expertise with **SentinelOne** (or equivalent EDR/XDR).
- Strong **Tanium** or equivalent patch management and vulnerability remediation experience.
- Proficiency managing Windows macOS Linux at scale.
- Scripting & automation: PowerShell Python Bash.

Cloud & Modern Tech
- Microsoft Entra ID (Azure AD) Microsoft 365 SaaS administration.
- Cloud infrastructure and Kubernetes (strongly preferred).
- Exposure to AI-enabled security tools (threat detection automated response).

Education & Certifications
- Bachelors degree in Computer Science IT or equivalent experience.
- CompTIA (Security Network) strongly preferred.
- SentinelOne Tanium Microsoft Azure or cloud security certifications a plus.
- Agile/DevOps experience preferred.