Endpoint Security Engineer

Position Overview:

The Endpoint Security Engineer will work alongside the Security Team to modernize device management practices, deploy enterprise-grade security controls, and support security program maturity. The ideal candidate has hands-on experience with Microsoft Intune, Windows Autopilot, and endpoint policy management within a cross-functional environment.

Key Responsibilities:

Endpoint Management & Security (50%)

• Lead the implementation and optimization of Microsoft Intune and Windows Autopilot
• Design and manage device configuration profiles for laptops, tablets, and mobile devices
• Implement compliance controls, security policies, and conditional access rules
• Troubleshoot complex endpoint issues and provide guidance to junior team members
• Monitor endpoint posture and respond to security incidents

Process Improvement & Knowledge Management (30%)

• Streamline provisioning processes to reduce manual workload
• Develop and maintain technical documentation and SOPs
• Mentor support staff and assist with knowledge transfer
• Identify and implement automation opportunities
• Lead collaborative projects to improve service delivery

Security Program Growth & Compliance (20%)

• Support ISO 27001 certification efforts via control implementation and documentation
• Contribute to security policy creation and procedural documentation
• Learn and apply security frameworks and participate in broader security initiatives

Required Qualifications:

• 5–10 years of IT systems administration experience, including 3–5 years in Microsoft Intune and Autopilot
• Proficient in endpoint configuration, compliance, and conditional access policies
• Strong communication skills with the ability to lead technical initiatives
• Capable of writing detailed documentation and delivering knowledge transfer
• Demonstrated interest in security and willingness to grow within the field
• Self-starter with a process improvement mindset

Preferred Qualifications:

• Experience with EDR tools such as Microsoft Defender for Endpoint or CrowdStrike
• Familiarity with ISO 27001, SOX, or PCI compliance frameworks
• Previous work experience in manufacturing or industrial environments
• Background in IT service management and documentation
• PowerShell scripting or other automation experience
• Understanding of advanced security practices (RBAC, PAM, Managed Identities, etc.)

What We Offer:

• Ownership of critical endpoint security infrastructure
• Career growth into additional cybersecurity domains
• Direct mentorship in a stable yet tech-forward manufacturing environment