Role overview

Security & Endpoint Engineer

Requirements and responsibilities

Readable role content extracted into sections for faster review.

Browser & Endpoint Security

  • Evaluate and implement enterprise browser security solutions.
  • Assess browser extensions, developer plugins, and AI-enabled browser tools for security and compliance risks.
  • Define governance policies, approval workflows, and allowlisting processes for browser extensions.
  • Implement monitoring, reporting, and enforcement controls to prevent unauthorized extension usage and reduce client-side security risks.
  • Develop operational documentation, processes, and support models for ongoing management.

Endpoint Security & Hardening

  • Support enterprise endpoint security initiatives across macOS, Windows, and Linux platforms.
  • Implement endpoint hardening standards and security best practices.
  • Assist with vulnerability remediation, device compliance, and security policy enforcement.
  • Support Zero Trust and device trust initiatives.
  • Work closely with endpoint engineering teams to balance security with user productivity.

Privileged Access Management (PAM)

  • Support the implementation and administration of Privileged Access Management solutions such as Delinea, CyberArk, or similar platforms.
  • Assist with privileged account governance, access reviews, and least-privilege initiatives.
  • Partner with Identity and Security teams to strengthen administrative access controls.

Security Operations & Compliance

  • Participate in security assessments, compliance initiatives, and internal audits.
  • Create and maintain technical documentation, implementation guides, and operational runbooks.
  • Track remediation activities, security exceptions, and operational metrics.
  • Support audit readiness and evidence collection activities.

Security Automation & Tooling

  • Develop automation scripts using Python, PowerShell, Bash, or similar scripting languages.
  • Integrate security tools with enterprise platforms and operational workflows.
  • Build dashboards and reporting capabilities to improve visibility and operational efficiency.

Cross-Functional Collaboration

  • Work closely with Security, Infrastructure, Identity, and Endpoint Engineering teams.
  • Participate in vendor evaluations, proof-of-concept (POC) activities, and solution deployments.
  • Present technical recommendations, implementation progress, and project updates to stakeholders.

Required Skills & Qualifications

  • Bachelor's degree in Computer Science, Cybersecurity, Information Security, or a related field.
  • 5–8 years of experience in Security Engineering, Endpoint Engineering, Systems Engineering, or a related domain.
  • Strong knowledge of enterprise endpoint security principles and device management.
  • Hands-on experience supporting macOS and Windows environments at scale.
  • Experience with browser security, extension governance, and endpoint security technologies.
  • Experience with endpoint management platforms such as Jamf, Microsoft Intune, FleetDM, or equivalent tools.
  • Good understanding of Zero Trust architecture and least-privilege access models.
  • Strong scripting skills using Python, PowerShell, Bash, or similar technologies.
  • Excellent analytical, troubleshooting, and communication skills.

Preferred Qualifications

  • Experience with browser extension security platforms such as KOI Security, LayerX, SQRX, or similar solutions.
  • Hands-on experience with Privileged Access Management (PAM) platforms such as Delinea, CyberArk, or BeyondTrust.
  • Experience with endpoint security platforms including CrowdStrike, Microsoft Defender, or SentinelOne.
  • Familiarity with enterprise security technologies such as Okta, Zscaler, and Microsoft Security solutions.
  • Knowledge of security frameworks including SOC 2, ISO 27001, and NIST.
  • Understanding of AI security risks, browser-based AI tools, and governance controls.

Key Success Measures

  • Successfully evaluate and implement enterprise browser extension security controls.
  • Improve visibility and governance of browser extension usage across the organization.
  • Implement effective allowlisting, monitoring, and enforcement processes.
  • Contribute to endpoint security, device hardening, and Privileged Access Management initiatives.
  • Deliver comprehensive documentation, operational procedures, and automation to support ongoing security operations.
Similar roles

Keep a backup shortlist.

Browse stack
FocusSecurity EngineeringRole area
Seniority signalSeniorCandidate level
StackPythonPrimary skills
Location1 accepted countryEligibility

Stack

Use these tags to compare similar remote roles.

Location eligibility

Candidates should apply only when their profile country is listed here.

Your profileCountry not setSign in to check your country against this role.

Hiring flow

WithMira shows the role, then sends candidates to the company application.

1Check role fit, stack, and location eligibility in WithMira.
2Open the company application page from the tracked apply link.
3Save the role or subscribe for similar opportunities before leaving.
Apply on company siteCompany siteOpen link