We are looking for an experienced Security Engineer to take ownership of Application Whitelisting (AWL) and platform management for McAfee/Trellix solutions, including ePolicy Orchestrator (ePO) and Endpoint Security (ENS). This role will be responsible for designing, implementing, and maintaining robust security controls to protect enterprise systems from unauthorized applications and emerging cyber threats. You will collaborate with cross-functional teams to develop effective security strategies, optimize endpoint security performance, and ensure alignment with organizational compliance requirements. This is a key technical role for a professional who thrives in complex environments and is committed to maintaining a high level of security posture.
Key Responsibilities
- Design, implement, and manage enterprise-wide Application Whitelisting (AWL) policies, including trust list creation, exception handling, and regular policy updates.
- Administer and maintain ePO environments, ensuring seamless policy deployment, timely patching, and optimal database performance.
- Monitor and optimize Endpoint Security (ENS) operations across diverse operating systems such as Windows, macOS, and Linux.
- Ensure compliance with established frameworks like NIST, CIS, ISO 27001, and organizational security guidelines through regular audits and configuration reviews.
- Integrate McAfee/Trellix solutions with SIEM platforms (e.g., Splunk, QRadar) and vulnerability management systems to enhance detection, response, and reporting capabilities.
Qualifications
- Proven expertise in McAfee/Trellix AWL, ENS, and ePO administration.
- Experience managing large-scale endpoint security deployments in enterprise environments.
- Strong understanding of endpoint hardening, malware prevention, and advanced threat detection techniques.
- Proficiency across multiple operating systems, including Windows, macOS, and Linux.
- Bachelor’s degree in Cybersecurity, IT, or equivalent professional experience.
- Relevant certifications such as McAfee Certified Product Specialist – ePO/ENS, CompTIA Security+, and preferably CISSP or CISM.
- Experience with API integrations and automation scripting using PowerShell or Python.
- Familiarity with vulnerability and patch management tools and processes.
- Working knowledge of security frameworks such as MITRE ATT&CK.
This is a unique opportunity for a security professional to work with industry-leading endpoint protection platforms in a role that directly contributes to safeguarding business-critical systems. If you have the expertise, drive, and passion to deliver high-impact security outcomes, we would love to hear from you.