Senior Endpoint Engineer

Role Description

This role combines engineering expertise with operational excellence to enhance the security posture of DB’s devices, servers, and cloud workloads. You will collaborate with cross functional teams to design strategies, deploy solutions, and address security challenges.

Key responsibilities:

• Manage and optimize tools EDR (e.g., Microsoft Defender for Endpoint, CrowdStrike etc.), Antimalware solutions, and Tanium Endpoint Platform.
• Lead POCs for new security tools and features, evaluating their effectiveness, compatibility, and scalability. Document finding and provide detailed recommendation for production deployment.
• Trouble shooting and solving complex problems in collaboration with Infra & Platform teams.
• Develop and enforce endpoint policies, ensuring alignment with DB’s security standards.
• Maintain security for cloud workloads using platforms such as Prisma cloud or equivalent solutions. Ensure container image scanning, vulnerability management, and security configurations are in place for cloud workloads.
• Lead efforts in endpoint attack surface reduction and hardening initiatives.
• Monitor and respond to endpoint and cloud workload security alerts and incidents, collaborating with the threat operations and other teams for resolution. Perform root cause analysis and remediation for security related issues.
• Drive the resolution of audit findings by working with cross functional teams to implement required controls on endpoints. Provide updates, maintain documentation, and ensure alignment with regulatory standards.
• Create scripts(PowerShell, Python etc.) for testing, monitoring, and compliance-related tasks.
• Mentor junior team members and provide technical guidance.

Your skills and experience

Required:

• 8+ years of experience in endpoint security engineering or operations roles.
• Expertise in EDR, Tanium, Antimalware, MDE, Symantec, Device Control and Attack Surface Reduction strategies.
• Deep knowledge on Windows configurations, system performance assessments and develop functionality testing templates.
• Lead PoC assessments on Endpoint Security tools on Windows environments
• Strong trouble shooting skills to support L1/L2 teams.
• Familiarity of cloud workload protection (Palo Alto Prisma) and hybrid cloud security.
• Strong scripting skills in PowerShell or Python for automation and compliance checks.
• Experienced in working with Windows and Unix-based operating systems.
• Relevant certifications in cybersecurity or related fields.
• Experience leading security projects and mentoring team members.
• Excellent communication skills.
• Experience in a banking or financial services environment.

Preferred:

• Familiarity with SIEM tools and other security technologies.
• Expertise in vulnerability management and risk remediation.
• Familiarity with cloud platforms (preferably GCP)
• Basic knowledge of DevOps tools like GitHub, Docker, Kubernetes, and Terraform

About us/about Deutsche Bank:

Deutsche Bank is an equal opportunity employer who seeks to recruit and appoint the best available person for a job regardless of marital status, sex (including pregnancy), age, religion, belief, race, nationality and ethnic or national origin, colour, sexual orientation or disability.

Before applying, please read our data protection policy: https://dbprivacy.ro/candidati.html?lang=ro