Endpoint Security Engineer

Endpoint Security Engineer

This role is a hands-on Windows Endpoint Security Specialist supporting a Cisco ISE team, focused on endpoint compliance, posture validation, and automated remediation.

Key Responsibilities

• Develop, test, and maintain advanced PowerShell scripts to automate endpoint compliance validation, data collection, and reporting aligned with security and DISA STIG requirements
• Design and implement automated remediation scripts to restore non-compliant endpoints to required baselines, including STIG configurations and endpoint security agent health
• Deploy and manage remediation solutions through Cisco Secure Client to support automated compliance enforcement
• Collaborate with Cisco ISE engineers to implement, optimize, and troubleshoot posture assessment workflows and NAC policy enforcement
• Investigate and resolve endpoint-side issues impacting network access compliance and client provisioning
• Correlate vulnerability scan results with endpoint configuration gaps to drive remediation efforts
• Validate and monitor patch management systems (WSUS, SCCM, Intune) to ensure endpoint update compliance
• Support endpoint certificate management and PKI-related requirements as needed

Required Skills

• Must be able to obtain Secret security clearance
• Advanced PowerShell scripting for automated compliance checks (registry, services, file permissions)
• PowerShell scripting for automated remediation of non-compliant endpoint configurations and STIG settings
• Ability to create scripts for data gathering and compliance status reporting
• Deep knowledge of Windows endpoint internals and endpoint security tooling
• Strong EPP/EDR experience, including validating agent install status, service health, versioning, and signature/definition updates
• Experience configuring and auditing host-based firewalls (Windows Defender Firewall)
• Understanding of data-at-rest encryption and verification methods (e.g., BitLocker)
• Familiarity with application whitelisting/application control concepts and enforcement
• Ability to interpret vulnerability scan results and correlate them with endpoint configuration and STIG findings
• Practical experience auditing and implementing DISA STIG requirements for Windows endpoints
• Proficiency with Cisco ISE posture assessment and policy configuration for endpoint compliance