Data Loss Prevention Engineer (Endpoint Security) - Hybrid
Company: Charles Schwab
Location: Paradise Valley
Posted on: May 4, 2025
|
|
Job Description:
Data Loss Prevention Engineer (Endpoint Security) - Hybrid at
Charles Schwab summary: As a Data Loss Prevention Engineer, I focus
on enhancing endpoint security technologies and threat management
to protect sensitive data. My role involves designing,
implementing, and managing security solutions that meet regulatory
standards while collaborating with cross-functional teams. With
over 3 years of experience in cybersecurity engineering, I develop
and automate security processes, ensuring compliance and optimal
performance of endpoint protection tools. Position Type:
Regular
Your opportunity
At Schwab, you are empowered to make an impact on your career.
Here, innovative thought meets creative problem solving, helping us
"challenge the status quo" and transform the finance industry
together. - The Endpoint Security Engineer is an individual
contributor supporting endpoint security technologies, threat
monitoring and management in Schwab Cybersecurity Services. This
role works with the security and infrastructure teams on the
design, engineering, and implementation of technology solutions and
methodologies to ensure secure endpoints. This role requires
advanced level knowledge of the risk and endpoint security
landscape to be able to better implement and maintain impactful
security solutions. - What you're good at - Engineering and
implementing enterprise security capabilities including EDR, and
data protection. Guiding configuration and support for security
tools while ensuring all regulatory and compliance standards are
met. Collaborating with product and project teams to understand
needs and enablement with security products. Strong analysis and
decision-making skills with the ability to identify opportunities
to manage endpoint security tools, participate in technical
cross-functional sessions, and ensure adherence to change and
configuration management principles. Assessing issues and
developing resolutions to meet productivity, quality goals and
objectives What you have
A proven track record of experience in administering security
solutions.
- Preferred experience managing endpoint security tools such as EDR, DLP, device control, and other endpoint data protection technologies.
- Understand general networking concepts such as firewalls and IP networking.
- Understand fundamental operating system functionality and how applications communicate and interact with the operating system.
- Experience with data classification labeling and relevant technologies.
- Ability to configure, design and implement data protection, encryption in transit, encryption at rest, and DLP.
- Experience with regex for data pattern matching.
- Experience with Python, REST API, and GIT.
- Develop, engineer, and automate quality monitoring of unstructured and structured data to ensure accurate response rules based on corporate security and compliance policies.
- Continually evaluate current data protection capabilities to increase alert fidelity for quantifiable risk events.
- Develop and report enterprise level metrics for endpoint security controls.
- Assist with architecting, implementing, and integrating security tools using best practices and value-driven use cases.
- Create content filters, rules, dashboards, and reports.
- Provide compliance and audit evidence for monitored systems.
- Identify and implement automation of repetitive tasks.
- Document, publish and maintain a knowledge base of information pertaining to the functionality, processes and procedures related to the supported tools.
- Create, modifying, test, deploy procedure and rules specific to
asset type (i.e. mainframe, web servers, database servers, batch
servers, application servers) One or more endpoint security related
technologies (Preferred)
- EPP/EDR
- DLP Qualifications
- At least 3 to 5 years of progressive experience in cybersecurity engineering with multiple security controls within multiple security domains.
- More than 3 years of enterprise-level experience supporting DLP technologies that are subject to high levels of audit and regulatory oversight, is required.
- At least 3 years focused on Endpoint Security Engineering.
- Bachelor's Degree in Computer Science, Engineering, or a
related field. - Preferred:
- CISSP, CISM, or other relevant information security industry recognized certification preferred.
- Experience with CrowdStrike or a comparable EDR. - - - What's
in it for you At Schwab, we're committed to empowering our
employees' personal and professional success. Our purpose-driven,
supportive culture, and focus on your development means you'll get
the tools you need to make a positive difference in the finance
industry. Our Hybrid Work and Flexibility approach balances our
ongoing commitment to workplace flexibility, serving our clients,
and our strong belief in the value of being together in person on a
regular basis. We offer a competitive benefits package that takes
care of the whole you - both today and in the future:
- 401(k) with company match and Employee stock purchase plan
- Paid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions
- Paid parental leave and family building benefits
- Tuition reimbursement
- Health, dental, and vision insurance Keywords: Data Loss Prevention, Endpoint Security, Cybersecurity, Threat Monitoring, Security Engineering, Data Protection, EDR, Compliance, Automation, IT Security
Keywords: Charles Schwab, Scottsdale , Data Loss Prevention Engineer (Endpoint Security) - Hybrid, Professions , Paradise Valley, Arizona
Click
here to apply!
|