About the role
The Endpoint Security & Patch Management Engineer is a pivotal role designed to strengthen our client’s endpoint security and operational resilience. You will be responsible for the day-to-day defense of the endpoint landscape, ensuring that systems are both monitored for threats and hardened against vulnerabilities.
Your initial focus will be on securing endpoints, drastically improving patch compliance, and reducing vulnerability exposure. Over time, you will help build a path toward scalable, standardized endpoint security operations.
What you will do:
Cortex XDR Operations
- Manage and support Palo Alto Cortex XDR operations, ensuring optimal configuration and agent health across the fleet.
- Monitor endpoint security alerts, perform triage, and support incident investigations to detect and block malicious activity.
- Fine-tune security policies and exclusion lists to balance security needs with operational performance.
- Troubleshoot agent connectivity issues and deployment failures.
Patch Management & Vulnerability Reduction
- Execute and manage comprehensive patch management cycles for both Windows and Linux environments.
- Partner with infrastructure teams to remediate critical vulnerabilities and reduce exposure windows.
- Analyze patch compliance reports, identify gaps, and manually troubleshoot systems that fail to update.
- Maintain strict adherence to change management processes during patching windows.
Operational Standardization
- Develop and maintain documentation, runbooks, and standard operating procedures (SOPs) for endpoint security.
- Assist in the standardization of endpoint configurations to ensure consistency and scalability.
- Propose automation or process improvements to streamline security operations.
Tools & Technologies:
- Endpoint Security: Palo Alto Cortex XDR (Primary focus).
- Operating Systems: Windows Server/10/11 and Linux (RHEL, Ubuntu, CentOS).
- Patching Tools: Enterprise Patch Management solutions (e.g., MECM/SCCM, BigFix, Automox, or native OS tools).
- Scripting: PowerShell or Bash (for automation and troubleshooting).
What you bring:
- Experience: 5+ years of experience in Endpoint Security, System Administration, or Security Operations.
- Cortex Expertise: Hands-on experience administering or supporting Palo Alto Cortex XDR or similar advanced EDR/XDR platforms.
- OS Mastery: Deep understanding of Windows and Linux operatin