Senior Endpoint Security Capabilities Engineer

Job Description

Overview & Responsibilities

Paramount Tech is looking for a Senior Endpoint Security Capabilities Engineer join the Paramount Security Capabilities Team. This individual will work with technology and business teams across the globe to expand and mature Paramount's endpoint security capabilities. The ideal candidate will have experience handling common endpoint security tools, developing reference architectures, and building endpoint specific benchmarks, guidelines, standards, and procedures. In addition, the candidate will be eager to explore innovative solutions to improve the security stack, enhance user experience, and contribute positively to company business objectives. This role is a meaningful role to the team and will have day-to-day operational responsibilities, advisory responsibilities, and should excel at communication and engagement with internal clients.

Responsibilities:
• Ensure endpoint security solutions are appropriately configured and maintained in accordance with our internal MITRE ATT&CK based security
• Leverage industry standard benchmarks (i.e., CIS) to develop Paramount security baselines
• Drive adoption of endpoint security benchmarks, guidelines, and standards
• Document, maintain, and improve standard operation procedures (SOPs), processes and standards regarding Endpoint Capabilities Management.
• Champion endpoint security technologies to business internal clients, helping them to understand endpoint-based risks and gain their support for the program
• Advise technical internal clients and have an understanding on appropriate configuration of security adjacent endpoint management tools, including SCCM, inTune, Tanium, and Jamf
• Provide day-to-day support of endpoint security technologies, including CrowdStrike, McAfee VirusScan, Malwarebytes, Keeper, Cribl Edge, BitLocker
• Support implementation of endpoint privileged access and device trust programs
• Liaise with vendors to ensure endpoint security products are updated at appropriate intervals and are deploy and configured according to vendor standard methodologies, particularly as products evolve
• Increase automation to optimize and improve the efficiency of the endpoint security stack
• Identify endpoint security controls gaps in the environment and seek innovative solutions to mitigate those
• Develop and issue technical requirements and proposals for new endpoint security technologies
• Knowledge of the latest on endpoint security technologies standard processes, threats, and control methodologies

Basic Qualifications:
• Bachelor's Degree or equivalent experience composed of 5+ years of experience in Information Security in a global enterprise environment and 3+ years of experience as a technical project lead and primary endpoint security support role
• Security Certification from Industry Standards (i.e., CompTIA, (ISC)2, SANS, ISACA COBIT) and Certifications related to vendor specific Endpoint Security technologies
• Live in the Tri-State area with the ability to come into NYC when required with a passion for technology, security, and providing superb customer service including excellent verbal/written communication skills, along with strong prioritization, problem solving/troubleshooting skills

Additional Qualifications:
• Experience developing benchmarks using industry standard frameworks (i.e., CIS)
• Ability to apply countermeasure techniques against common attack using MITRE ATT&CK and MITRE D3FEND frameworks
• Demonstrated experience managing endpoint security technologies including CrowdStrike, McAfee, MalwareBytes, Keeper, BitLocker
• Deep understanding of endpoint security adjacent domains, including network security and identity and access management, vulnerability management, and incident response
• Exposure to endpoint management solutions including SCCM, inTune, Tanium, and Jamf
• Ability to deploy and operate endpoint privileged management solutions
• Experiencing implementing device trust programs
• Experience securing workstations and server operations systems, including Windows, Linux (various distributions), MacOS
• Experience securing mobile endpoints, including iOS, iPad, and Android
• Experience using PowerShell, Python, or Shell scripting languages to automate tasks
• Experience in media, entertainment industry, broadcasting
• Experience working with Security Auditors and Compliance Officers
• Experience with cloud technologies AWS, GCP, Azure and Desktop-as-a-Service
• Experience with SQL or Regular Expressions

ADDITIONAL INFORMATION

Hiring Salary Range: $145,000.00 - 155,000.00. The hiring salary range for this position applies to New York City, California, Colorado, Washington state, and most other geographies. Starting pay for the successful applicant depends on a variety of job-related factors, including but not limited to geographic location, market demands, experience, training, and education. The benefits available for this position include medical, dental, vision, 401(k) plan, life insurance coverage, disability benefits, tuition assistance program and PTO or, if applicable, as otherwise dictated by the appropriate Collective Bargaining Agreement. This position is bonus eligible.

https://www.paramount.com/careers/benefits

Paramount is an equal opportunity employer (EOE) including disability/vet.

Jobcode: Reference SBJ-r1xvzv-18-118-164-151-42 in your application.