Experienced Windows Security Engineer

Experienced Windows Security Engineer

Job Description

[Up to c. £325k Comp Package (or equivalent) | Office-Led Working]

Role Overview

We’re representing a leading global trading and technology firm seeking a Senior Windows Security Engineer to take ownership of security across its Windows platform at scale. This is an out-and-out security opportunity, not traditional Windows infrastructure. The focus is on reviewing PowerShell and system-level code to identify vulnerabilities, driving remediation of critical weaknesses, and strengthening endpoint detection and protection across a complex global estate. The role combines Windows platform security, vulnerability management, endpoint security, and AppSec-style code review...

*Relocation support is available for candidates moving to New York.

Key Responsibilities

• Review, analyse, and secure PowerShell scripts and system-level tooling, identifying vulnerabilities and improving code safety
• Design and implement security controls across Windows endpoints and server environments
• Lead vulnerability management initiatives, focusing on detection, prioritisation, and remediation of high-impact risks
• Strengthen endpoint protection through optimisation of EDR, monitoring, and response capabilities
• Develop automation to scale security controls, detection, and remediation workflows
• Harden Windows systems through configuration, policy enforcement, and secure baselining
• Work closely with engineering teams to ensure secure coding and operational practices are embedded into workflows
• Investigate potential threats and anomalous behaviour using system telemetry and event data
• Contribute to security tooling decisions, testing new approaches and improving existing capabilities
• Collaborate with identity and infrastructure teams on security-related initiatives across Active Directory and authentication systems

What You’ll Bring...

• 4-12 years’ experience in Windows engineering, platform security, or endpoint security roles within complex environments
• Deep understanding of Windows internals and how security controls operate at OS level
• Advanced PowerShell expertise, including the ability to read, audit, and secure scripts and automation workflows
• Strong experience identifying and remediating vulnerabilities, including code-level and configuration-level weaknesses
• Hands-on knowledge of endpoint security tooling (EDR, AV, host controls) and how to optimise them in production
• Experience with vulnerability management processes and prioritising risk in large-scale environments
• Familiarity with Active Directory, Entra ID, and authentication/security mechanisms within Windows ecosystems
• Strong scripting and automation mindset, focused on scalability and repeatability
• Understanding of attacker techniques relevant to Windows platforms (e.g. privilege escalation, lateral movement)
• Clear communication skills, particularly when explaining risk and remediation strategies
• (Preferred) Experience with security tooling integration, SIEM pipelines, or event-driven detection frameworks

...

Apply for this role

All fields marked with * are required.