Endava is seeking an experienced Device Security Engineer to support the design, governance, and continuous improvement of enterprise device security controls across endpoints, mobile devices, servers, and emerging device platforms.
This hands-on role is responsible for defining secure device architecture standards, engineering device hardening baselines, and ensuring protective security controls are effectively implemented across managed devices. The Device Security Engineer will work closely with Infrastructure, Cloud, End User Computing, and Security Operations teams to strengthen endpoint protection, device compliance, and operational security across enterprise environments.
The role also contributes to broader cyber security initiatives such as Zero Trust device posture, privileged access governance, device identity enforcement, and integration of endpoint telemetry into security monitoring and incident response processes.
Responsibilities:
- Define and maintain device security standards, policies, and architectural patterns for endpoints, servers, and mobile devices.
- Develop and govern device hardening baselines and configuration standards aligned with enterprise security policies and compliance frameworks.
- Improve device compliance posture by implementing consistent security policies, reporting, and remediation processes.
- Partner with Infrastructure and End User Computing teams to manage device lifecycle security including provisioning, patching, compliance enforcement, and decommissioning.
- Engineer and maintain device protection platforms such as EDR, antivirus, and device management solutions.
- Ensure device protection controls are configured correctly and provide effective coverage across the enterprise environment.
- Define and enforce device identity and access security requirements, including conditional access readiness, device compliance policies, and privileged access controls.
- Support remediation of device security risks, high-risk configurations, and compliance gaps based on business impact and threat intelligence.
- Act as a device security subject matter expert during cyber incidents involving endpoints or managed devices.
- Maintain device security documentation including baseline builds, configuration standards, and secure device deployment patterns.
- Collaborate with SOC and Cyber Defence teams to ensure endpoint telemetry supports effective monitoring, detection, and response workflows.
- Support automation and continuous improvement initiatives for device compliance enforcement, configuration management, and reporting.