Endpoint Vulnerability Management and Security Engineer

Responsibilities:

We are seeking a Full Time Candidate for an Engineer role, to provide support and expertise for Endpoint Security, Patch Management and Vulnerability Engineering including Microsoft Defender, Crowdstrike, Proofpoint Endpoint DLP, Microsoft Intune, Microsoft Email Security, Purview, Zscaler ZTA, ZPA, ZIA, Microsoft DLP and AIP. If you are a motived self-starter with strong critical thinking and analytical skills, a process oriented technical problem solver, good with people and communications, and a team player, we would like to hear from you.

Vulnerability & Patch Management

• Conduct monthly vulnerability evaluation and management for endpoints, and desktop applications.
• Oversee the monthly endpoint patch management lifecycle, including drivers, firmware, and third-party software updates.
• Ensure timely patching, testing, deployment, and recall of vulnerabilities to maintain system security.
• Conduct quarterly lifecycle reviews, including vulnerability patching, reporting, and ensuring compatibility with deployed configurations.
• Identify areas for process improvement in vulnerability patch management and endpoint security.
• Manage compliance with security requirements related to patch management, integrating system hardening policies.
• Develop and implement a third-party patch management solution such as Recast, PatchMyPC, Automox, N-able, NinjaOne

Endpoint Protection & Antivirus

• Manage antivirus policy and platforms to protect against malware, viruses, and other endpoint threats.
• Administer Intune for endpoint security, ensuring proper configurations and policies.
• Work closely with the IT Service Desk and IT Engineering teams to resolve deployment, compatibility, and configuration issues related to endpoint security.

Email Security & Protection

• Oversee Microsoft Data Loss Prevention (DLP) to prevent phishing, impersonation, and spam threats.
• Implement strategies for email impersonation prevention and anti-phishing measures.
• Manage email encryption, quarantine policies, and regular updates of RegEX rules to ensure strong security controls.
• Create and maintain documentation for mail security configurations and policies.
• Evaluate and ensure ongoing compliance with email security requirements and evolving threat landscapes.

• Participate in audit and compliance operational management and reporting needs.

Web Security & Zero Trust

• Implement and manage Zscaler Internet Security to ensure secure web access and filtering.
• Work with network team to deploy and manage Zscaler Trusted Security to ensure secure remote access and enforce Zero Trust network principles.
• Monitor and respond to anomalous user behavior, leveraging detection tools to mitigate sign-in risks.
• Conduct threat tracking, correlation, and behavioral analytics to identify potential security incidents.
• Isolate and mitigate threats using advanced web security solutions and tools.
• Incorporate SIEM tools to log, track and correlate threats across endpoints.
• Audit and evaluate compliance with web security standards and frameworks including CIS and NISTframeworks.

Data Loss Prevention (DLP) & Information Protection

• Oversee Proofpoint for Endpoint Data Loss Prevention ensuring confidential data is protected from unauthorized exfiltration or improper storage.
• Administer AIP solutions for accurate data classification and handling.
• Oversee Insider Risk tools, ensuring comprehensive monitoring of potential internal threats.
• Apply Microsoft Purview to protect, classify, and manage sensitive data across various environments.
• Ensure system hardening policies are integrated within the DLP framework and overall configuration management lifecycle.
• Maintain up to date documentation for DLP, data classification, and protection protocols.

Security & Risk Management

• Manage incident response and risk management, ensuring fast identification and resolution of security incidents.
• Monitor user and sign-in risks, implementing risk mitigation strategies where necessary.
• Provide support for training programs to raise awareness of security policies, threats, and best practices.
• Assist in enforcement of security policies to ensure compliance across all platforms and systems.

General Responsibilities

• Collaborate with relevant teams (IT Service Desk, IT Engineering) to troubleshoot and resolve deployment issues, compatibility problems, and policy conflicts.
• Work with IT teams to resolve issues related to email security configurations, policy conflicts, and deployment.
• Identify opportunities for continuous improvement in security processes and configuration management.

Desired Skills & Expertise

Candidates should have the following background, skills, and characteristics:

• Information Technology or related major with 3-5 years of experience in information security with a focus on endpoint patch, antivirus and vulnerability management.
• Strong knowledge of Microsoft Anti-Spam, DLP, Defender, AIP, Intune, Security and Compliance tools.
• Strong knowledge of third-party patch management tools such as Automox, Recast, Patch My PC, NinjaOne, N-Able
• Experienced with Microsoft Defender, Crowdstrike, Proofpoint, Zscaler, XDR, MDR, SIEM Tools.
• Experienced with automation and scripting using Powershell, Graph, and Power Automate.
• ITIL certification or working knowledge of the ITIL framework.
• Experience with Windows 10/11, Windows365, AWS Workspace.
• Strong written and verbal communication skills.
• Experience working with ITSM tools such as Service-Now or Jira ServiceDesk.
• Basic understanding of Amazon AWS, Azure AD, Office365.

Why work at Curinos?

• Competitive benefits, including a range of Financial, Health and Lifestyle benefits to choose from
• Flexible working options, including home working, flexible hours and part time options, depending on the role requirements – please ask!
• Competitive annual leave, floating holidays, volunteering days and a day off for your birthday!
• Learning and development tools to assist with your career development
• Work with industry leading Subject Matter Experts and specialist products
• Regular social events and networking opportunities
• Collaborative, supportive culture, including an active DE&I program
• Employee Assistance Program which provides expert third-party advice on wellbeing, relationships, legal and financial matters, as well as access to counselling services

Applying:

We know that sometimes the 'perfect candidate' doesn't exist, and that people can be put off applying for a job if they don't meet all the requirements. If you're excited about working for us and have relevant skills or experience, please go ahead and apply. You could be just what we need!

If you need any adjustments to support your application, such as information in alternative formats, special requirements to access our buildings or adjusted interview formats please contact us at careers@curinos.com and we’ll do everything we can to help.

Inclusivity at Curinos:

We believe strongly in the value of diversity and creating supportive, inclusive environments where our colleagues can succeed.  As such, Curinos is proud to be an Equal Opportunity Employer. We do not discriminate on the basis of race, color, ancestry, national origin, religion, or religious creed, mental or physical disability, medical condition, genetic information, sex (including pregnancy, childbirth, and related medical conditions), sexual orientation, gender identity, gender expression, age, marital status, military or veteran status, citizenship, or other protected characteristics.

Curinos empowers financial institutions to make better, faster and more profitable decisions through industry-leading proprietary data, technologies and insights. With decades-long expertise in the financial services industry and a relentless focus on the future, Curinos technology and analytics ecosystem allows clients to anticipate customer needs and optimize their go-to market decisions in an increasingly competitive market.

We operate in a hybrid/remote model, and this position is fully remote in Canada or hybrid in the Toronto area.