Security Operations Engineer - Endpoint & Vulnerability Management

Security Operations Engineer - Endpoint & Vulnerability Management

Job Description

[Up to c. $350k Comp Package | Hybrid Working]

Role Overview

We’re representing a highly technical global trading firm hiring into its IT Security function in New York. This is a hands-on security operations role sitting close to IT engineering, endpoint platforms, identity, vulnerability management and incident response. You’ll help secure high-scale corporate technology environments across Windows, macOS and hybrid identity platforms, while working with engineering and operations teams to turn security issues into practical, repeatable fixes...

Key Responsibilities

• Strengthen endpoint, identity and corporate IT environments by rolling out scalable security controls across a complex technology estate
• Help drive vulnerability remediation by identifying exposure, assessing risk, coordinating fixes and tracking issues through to resolution
• Support security-led escalations from IT Operations, including incidents, suspicious activity, platform issues and production-impacting events
• Investigate technical problems using logs, telemetry, scripts, system data and configuration evidence to identify defects, misconfigurations or security concerns
• Partner with infrastructure, engineering and operations teams to turn security findings into durable fixes and sensible control improvements
• Improve day-to-day security operations by refining runbooks, response procedures, escalation paths and repeatable workflows
• Build scripts, queries and lightweight automation to reduce manual effort, improve analysis and make security processes more consistent
• Translate technical findings into clear, accurate guidance for both technical teams and wider business stakeholders

What You’ll Bring…

• Around 5+ years of experience across security operations, IT security engineering, endpoint engineering or infrastructure operations
• Strong Windows engineering fundamentals, including administration, troubleshooting, platform support and security hardening
• Hands-on experience with endpoint protection and control technologies such as EDR, host-based firewalling, encryption, application control, logging or device security tooling
• Practical understanding of vulnerability management, including assessment, remediation planning, patch coordination and risk-based prioritisation
• Experience working in code-led, configuration-led or infrastructure-as-code environments
• Ability to work through incidents and technical issues using evidence from logs, endpoint telemetry, performance data, scripts and system behaviour
• Comfortable using PowerShell to automate tasks, interrogate systems, analyse data or support investigations
• Exposure to security incident response in operational or enterprise technology environments
• Clear communicator who can judge when to escalate, when to delegate and how to explain technical issues without losing accuracy
• (Preferred) Working knowledge of macOS security fundamentals
• (Preferred) Experience supporting hybrid identity platforms such as Active Directory, Entra ID or similar

...

Apply for this role

All fields marked with * are required.