Sr. EndPoint Security Engineer

Contract to Hire

Burlington, NC

SMART IT People has a contract to hire opportunity for a Sr. Endpoint and Server Security Engineer in Burlington, NC to work across a variety of technical disciplines and partner with various teams to ensure the enterprise security strategy is carried out. This position will also work closely with other security staff and may represent the interests of the broader Information Security team to the rest of the enterprise.


Required skills:

Minimum 7 years experience in information security.
Hands-on experience in implementing and supporting various security platforms (firewall, proxy, DLP, SIEM, endpoint, vulnerability scanning, PKI, MFA, etc.).
Experience with enterprise patch management strategy and execution.
Experience working with traditional antivirus platforms including Symantec Endpoint Protection and/or McAfee Antivirus.
Hands-on experience with at least one of the following platforms: Apache, IIS, Oracle, Microsoft SQL.
Strong interpersonal, written, and oral communication skills.
Excellent analytical, problem-solving and decision-making abilities.
Strong customer service and solution-focused orientation.
Experience working in a team-oriented, collaborative environment.

Preferred Skills: 

Bachelor's or Master's Degree in Information Systems, Computer Science or related discipline is highly desired.
CISSP certification desired.
Development or scripting knowledge desired.
Knowledge of firewall and network segmentation concepts.
Familiarity with group policy and DNS.
Experience working with EDR platforms such as Crowdstrike, Cylance, etc.
Knowledge of industry regulations such as PCI and HIPAA a plus.
Familiarity with NIST and/or CIS benchmarks.

Job description:

Lead and participate in technical security reviews of infrastructure components, especially related to endpoint and server technologies and platforms.
Develop and maintain a standard set of security controls that can be applied to server-based operating systems including Windows Server 2016IWindows Server 2012 R2, and Linux.
Maintain and enforce host hardening and associated security controls on both endpoints (Windows 7, Windows 10, and legacy platforms) and mobile devices.
Ensures that enterprise mobile devices and the associated MDM environment is in compliance with relevant security policies and procedures.
Partner with other teams to ensure enterprise Active Directory domains uphold and support the 
security vision for endpoints and server platforms.
Partner with other teams to review and enhance security controls in virtualized server environments (VMWare).
Work with application teams, especially web/app frontend and database backend, to ensure 
configurations and associated deployments align with enterprise security standards.
Assist other members of the Office of Information Security in managing existing endpoint and server security platforms.
Articulate common practices and tactics used by malicious software and threat actors, along with associated remediation, to other IT teams.
Assess business requirements and use cases in order to ensure risk to endpoint and server platforms is properly assessed; recommend and drive the adoption of security controls to mitigate.
Perform administration and configuration of security-related platforms such as DLP and MFA.
Conduct evaluations of security technology platforms; document results.
Assist members of Risk and Compliance to answer technical questions from auditors and clients 
pertaining to the area of endpoint and server security.


To apply, please email resume in MS Word format to michael@smart-itpeople.com with job title in subject line.