Staff Endpoint Security Engineer

The Staff Endpoint Security Engineer is a critical, hands-on technical role responsible for designing, implementing, and maintaining robust security controls and detection mechanisms across all company and Bring-Your-Own-Device (BYOD) endpoints, including laptops, desktops, mobile phones, and other devices used by staff and contractors. This role is pivotal in protecting Included Health's sensitive data, particularly Protected Health Information (PHI), by preventing unauthorized exfiltration from endpoints and ensuring the security of devices accessing company resources. You will be instrumental in architecting and deploying advanced endpoint defenses, managing security tools, and contributing to threat response to reduce the number and criticality of HIPAA-related incidents. Responsibilities include developing and implementing endpoint security strategy, architecture, and roadmap, focusing on proactive defense and detection engineering. One will design and enforce security configurations, hardening standards, and baselines for diverse operating systems to minimize attack surfaces.