Your opportunity

The Senior Endpoint Security Engineer is an individual contributor supporting endpoint security technologies, threat monitoring and management in Schwab Cybersecurity Services. This role leads the security and infrastructure teams on the design, engineering, and implementation of technology solutions and methodologies to ensure secure endpoints. This role requires advanced level knowledge of the risk and endpoint security landscape to be able to better implement and maintain impactful security solutions.

Leading the engineering efforts and implemention of endpoint security capabilities including EDR, SEIM, SOAR, DLP, and Zero Trust. Leading the design and implementation of security tools while ensuring all regulatory and compliance standards are met. Collaborating with product and project teams to understand needs and enablement with security products. Strong analysis and decision-making skills with the ability to identify opportunities to manage endpoint security tools, participate in technical cross-functional sessions, and ensure adherence to change and configuration management principles. Assessing issues and developing resolutions to meet productivity, quality goals and objectives.

A proven track record of experience in implementing enterprise security solutions including design, configuration, installation, customization, automation, and optimization of tools.

Extensive experience installing, configuring, maturing, and troubleshooting production and non-production endpoint security capabilities including EDR, SEIM, SOAR, DLP, device control, FIM, and Zero Trust.Red Team penetration testing, incident management and response, forensics, or other security operations functions.Integrating multiple security tools together.Customization, implementation of best practices, determine specific value-driven use cases, and fully integrate the solution into the environment. Develop and report enterprise level metrics for endpoint security controls.Work closely with stakeholder teams (Compliance, Windows, Linux, Network, Chronicle, Remedy, Asset Management) to develop high value enterprise capabilities/results while reducing noise and false alarms.Architect solutions (initial state, transition, final state architectures).  Create content filters, rules, dashboards, and reports.Provide compliance and audit evidence for monitored systems.Identify and implement automation of repetitive tasks.Document, publish, and maintain a knowledge base of information pertaining to the functionality, processes and procedures related to the supported tools.Create, modifying, test, deploy procedure and rules specific to asset type (i.e. web servers, database servers, batch servers, application servers)What you have

One or more endpoint security related technologies

EPP/EDRSIEM/SOARMicrosoft InTuneDLPFIMRed TeamPenetration testingIncident management and responseForensics

Qualifications

More than 7 years of progressive experience in cybersecurity engineeringAdvanced experience administering and managing CrowdStrike environments, including Data Protection, Identity Protection, FIM, Next-Gen SIEM, Cloud Security, and Fusion WorkflowsAbility to identify security risks and weaknesses and provide security mitigation and remediation recommendationsExperience with handling workloads in an Agile environment utilizing SCRUM with Lean/MVP methodologiesDemonstrated experience and expertise with multiple security controls within multiple security domainsBachelor’s Degree in Computer Science, Engineering, or related field requiredCISSP, CISM, or other relevant information security industry recognized certification preferred
What’s in it for you

At Schwab, we’re committed to empowering our employees’ personal and professional success. Our purpose-driven, supportive culture, and focus on your development means you’ll get the tools you need to make a positive difference in the finance industry. Our Hybrid Work and Flexibility approach balances our ongoing commitment to workplace flexibility, serving our clients, and our strong belief in the value of being together in person on a regular basis.

We offer a competitive benefits package that takes care of the whole you – both today and in the future:

401(k) with company match and Employee stock purchase planPaid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positionsPaid parental leave and family building benefitsTuition reimbursementHealth, dental, and vision insurance Apply Save job