End-Point Protection Engineer

End-Point Protection Engineer Duration: 06+ months Location: Remote Pay Rate: $55-60/Hr on W2The End-Point Protection Engineer will provide senior engineering support for enterprise endpoint security across the SEC ISS contract environment. This role will design, implement, and sustain endpoint protection capabilities for Windows, macOS, and iOS endpoints, including workstation and server environments, while enforcing SEC security baselines and federal cybersecurity requirements. The engineer will lead vulnerability remediation, patch and supersedence execution, and POA&M closure activities to maintain security posture and audit readiness. The position will also drive operational visibility through automation, documentation, and transparent reporting to SEC stakeholders.Primary Responsibilities Endpoint Security Engineering & Baseline ManagementArchitect, implement, and maintain enterprise endpoint protection strategies across Windows, macOS, iOS, workstation, and server platforms.Define, enforce, and continuously improve endpoint security baselines using Client Defender for Endpoint and Client Intune.Lead deployment and configuration of antivirus and endpoint protection tooling, including policy tuning, signature/DAT update management, and scheduled scans.Validate new endpoint security configurations in controlled environments before production rollout.Vulnerability, Patching & POA&M ExecutionOwn endpoint patching strategy and execution across managed endpoint environments, including supersedence management.Monitor vulnerability findings, assess risk and severity, and coordinate remediation with technical teams and system owners.Lead development, tracking, and closure of endpoint POA&Ms with clear milestones and risk-based prioritization.Ensure remediation and patch activities support ongoing compliance objectives and audit readiness.Threat Monitoring, Incident Response & ReportingMonitor endpoint security telemetry and respond to endpoint-specific threats, suspicious activity, and policy non-compliance.Serve as an escalation point for complex endpoint incidents and coordinate with SOC and incident response stakeholders for broader investigations.Create and maintain automation scripts and reporting workflows for endpoint compliance, vulnerability status, and remediation tracking.Maintain accurate SOPs, runbooks, and status reporting to support governance, audit response, and service transparency.Stakeholder Coordination & Technical LeadershipCollaborate with federal stakeholders, ISS teams, and partner vendors to validate endpoint security posture and operational readiness.Provide senior technical guidance to engineering and operations teams on endpoint security architecture and best practices.Support audit remediation activities (e.g., FISMA, IG, GAO) by preparing evidence and tracking corrective actions.Drive continuous improvement initiatives that increase automation, resilience, and efficiency of endpoint security operations.Required Qualifications Citizenship/Work Authorization: Must meet contract requirements.Clearance: Ability to obtain and maintain SEC Public Trust (or higher if required).Education: Bachelors in a relevant field (e.g., Information Technology, Computer Science, Engineering).Experience: 8+ years of experience in enterprise endpoint security engineering in large, regulated environments.Advanced experience designing, implementing, and managing Client Defender for Endpoint and Intune security baselines.Hands-on experience in vulnerability management, endpoint patching strategies, supersedence processes, and POA&M resolution.Experience documenting SOPs/runbooks and providing compliance-focused reporting to federal stakeholders.Technical Skills Client Defender for EndpointClient Intune endpoint and mobile device security baseline managementEndpoint vulnerability assessment, remediation coordination, and POA&M trackingEnterprise endpoint patching and supersedence managementAntivirus/endpoint protection deployment, signature/DAT update operations, and scheduled scan managementEndpoint threat triage, escalation, and response coordinationAutomation scripting for reporting and remediationProcess documentation, status reporting, and compliance evidence support