End point security engineer

Location

• Preferred: Richmond VA or McLean VA
• Remote options available

Ideal Candidate Profile (Standout Traits)

• Highly hands-on-not just advisory
• Proven track record of building and implementing solutions
• Self-starter who can drive work independently
• Strong problem-solving mindset

We are seeking hands-on Endpoint Security Engineers to support a major endpoint security tool migration initiative. This role is heavily execution-focused-ideal for candidates who are builders problem-solvers and comfortable working independently.

You will be responsible for managing endpoint security tools supporting migration efforts and contributing directly to engineering and implementation work.

Key Responsibilities

• Manage and support endpoint security tools and platforms
• Contribute to migration from one toolset to another
• Build configure and enhance endpoint security capabilities
• Perform hands-on engineering and coding work
• Secure endpoint environments across multiple operating systems
• Support developer environments and containerized applications
• Collaborate in a distributed team with minimal meeting overhead (1 hour/day)

Required Qualifications (Basic)

• High School Diploma GED or equivalent certification
• 4 years in cybersecurity or IT
• 4 years of endpoint security experience
• 2 years with cloud and container technologies
• 2 years securing:
  • MacOS
  • Windows
  • Linux
• 2 years securing developer environments

Preferred Qualifications

• 8 years experience across security tools such as:
  • AV/EDR (CrowdStrike SentinelOne Symantec etc.)
  • Application Control
  • Data Loss Prevention (DLP)
  • Firewall technologies
  • Log management
  • Privileged Access Management (BeyondTrust Delinea Microsoft etc.)
  • System hardening behavior analysis threat detection
  • Vulnerability management
• 4 years:
  • Configuration management
  • Incident response/management
• 4 years AWS experience:
  • EC2 Lambda RDS Route53
• 3 years in:
  • Red Teaming
  • Threat intelligence
  • Threat hunting
  • Vulnerability management
• Knowledge of frameworks:
  • MITRE ATT&CK
  • NIST
  • OWASP
• Strong understanding of:
  • Network protocols
  • Infrastructure design
  • Multi-OS environments (Windows Linux macOS)
• Experience with:
  • Vulnerability exploitation (apps systems networks)
  • SIEM/log platforms
  • Log analysis & querying
• Technical skills:
  • Python or Go scripting (preferred)
  • SQL query writing
• Strong communication and ability to work independently and in distributed teams

Technical Environment / Tools

• Endpoint & security tools (not fixed vendor):
  • CrowdStrike Symantec Palo Alto SentinelOne
• Telemetry tools (e.g. OSQuery)
• Privileged Access Management platforms:
  • Delinea BeyondTrust Microsoft
• Cloud and containerization:
  • AWS
  • Containers / Dev Containers / CDE

Day-to-Day

• 1 hour of meetings daily
• Majority of time spent on hands-on engineering work
• Designing building and coding endpoint security solutions
• Supporting migration and implementation efforts