Endpoint Security Engineer
Largeton Group · Charlotte, NC · 3 wk ago
On-siteInformation TechnologyContract
Key Responsibilities
- Engineer & Optimize Endpoint Security Solutions
- Design, build, implement, and maintain endpoint security tools, with a strong focus on Tanium platform engineering
- Tanium Platform Ownership: Configure, Tune, And Manage Tanium Modules Including Comply Plus, Core Platform, Deploy, Discover, Enforce, Integrity Monitor, Patch, Performance, Threat Response
- Patch & Vulnerability Management: Automate and manage OS and third-party patching across a large enterprise environment to proactively remediate vulnerabilities
- Endpoint Detection & Response (EDR): Deploy and maintain tools such as CrowdStrike, ensuring proper configuration and response workflows
- Incident Response & Forensics: Investigate endpoint security incidents, isolate affected systems, and perform root cause analysis to prevent recurrence
- Security Policy & Controls: Develop and enforce endpoint security policies including MFA, device controls, and user access standards
- Telemetry & Threat Analysis: Correlate endpoint and log data (e.g., via Splunk) to identify complex attack patterns and security risks
- Automation & Scripting: Build scripts using PowerShell, Python, or Bash to streamline deployments, remediation actions, and monitoring
Required Qualifications
- Proven experience as an Endpoint Security Engineer in a large enterprise environment
- Hands-on Tanium engineering experience (must have built, configured, and maintained-not just used)
- Expertise across multiple Tanium modules listed above
- Strong knowledge of Windows and Linux operating systems
- Experience with:
- CrowdStrike (EDR)
- Splunk (log analysis / SIEM)
- CyberArk (privileged access management)
- Experience supporting large endpoint environments (thousands of devices)
Preferred Qualifications
- Certifications such as CISSP, CompTIA Security+, or similar
- Strong background in automation and security tooling optimization