Jobs · himalayas
Security & Endpoint Engineer
Brightpath Technologies · United States · Posted 11d ago
About the role
Implement security controls for browser extensions and manage endpoint security initiatives.
This is a remote position. Security & Endpoint Engineer (5–8 Years) Role Overview We are seeking an experienced Security & Endpoint Engineer Contractor to support strategic security initiatives across Dropbox’s endpoint environment. This role will initially focus on implementing enterprise-wide browser and extension security controls, including visibility, governance, allowlisting, risk assessment, and enforcement capabilities for browser extensions, developer plugins, and AI-enabled tools. The contractor will partner closely with Security, CorpFleet, Identity, and Infrastructure teams to evaluate, deploy, and operationalize security tooling that reduces client-side risk and strengthens Dropbox’s security posture. Initial Project Focus Client-Side Extension Security & Execution Control Key responsibilities include: Evaluate and perform proof-of-concept testing for browser extension security platforms. Assess browser extensions, developer plugins, and AI-enabled tools for security and compliance risk. Define extension governance, approval workflows, and allowlisting processes. Implement monitoring, reporting, and visibility capabilities. Support enforcement controls to prevent unauthorized extension usage and reduce data exfiltration risk. Develop operational processes, documentation, and support models for ongoing management. Following the initial project, the contractor will support additional security initiatives across endpoint management, Privileged Access Management (PAM), device hardening, endpoint compliance, and Zero Trust programs. Key Responsibilities Endpoint Security & Hardening Support enterprise endpoint security initiatives across macOS, Windows & Linux Implement and maintain endpoint security controls and hardening standards. Assist with vulnerability remediation and endpoint compliance activities. Support Zero Trust and device trust initiatives. Partner with endpoint engineering teams to balance security requirements with user experience. Privileged Access Management Support implementation and operational management of PAM solutions such as Delinea. Assist with privileged account governance, access reviews, and least-privilege initiatives. Partner with Security and Identity teams to strengthen administrative access controls. Security Operations & Compliance Participate in security assessments, audits, and compliance programs. Produce operational documentation, runbooks, and implementation guides. Track remediation activities, risk exceptions, and security metrics. Support audit readiness and evidence collection activities. Automation & Tooling Develop automation and scripts to improve security operations and reduce manual effort. Integrate security tools with enterprise platforms and workflows. Build dashboards and reporting capabilities to improve visibility and operational effectiveness. Cross-Functional Collaboration Work closely with Security, CorpFleet, Infrastructure, and Identity teams. Participate in vendor evaluations, proof-of-concepts, and implementation planning. Present technical recommendations, findings, and project status updates to stakeholders. Required Skills & Experience 5–8 years of experience in Security Engineering, Endpoint Engineering, Systems Engineering, or a related field. Strong understanding of endpoint security principles and enterprise device management. Experience supporting macOS and Windows environments at scale. Experience with browser security, extension governance, and endpoint security tooling. Experience with endpoint management tools such as Jamf, Intune, FleetDM, or similar Understanding of Zero Trust security principles and least-privilege access models. Strong scripting skills using Python, PowerShell, Bash, or similar technologies. Excellent troubleshooting, analytical, and problem-solving skills. Strong written and verbal communication skills. Preferred Qualifications Experience with browser extension security platforms such as KOI Security, LayerX, SQRX, or similar solutions. Experience with Privileged Access Management platforms such as Delinea, CyberArk, or BeyondTrust. Experience with endpoint security platforms such as CrowdStrike, Microsoft Defender, or SentinelOne. Familiarity with enterprise security technologies including Okta, Zscaler, and Microsoft Security solutions. Experience supporting SOC 2, ISO 27001, NIST, or similar security frameworks. Understanding of AI security risks, browser-based AI tools, and governance controls. Success Measures During the initial engagement, success will be measured by Successful evaluation and recommendation of browser extension security tooling. Deployment and operationalization of approved extension security controls. Improved visibility into browser extension usage across the environment. Implementation of governance, allowlisting, and enforcement processes. Contribution to broader endpoint security and PAM initiatives. Creation of sustainable documentation, runbooks, and operational procedures. O
Read the full posting on himalayas →
FAQ
Is the Security & Endpoint Engineer role at Brightpath Technologies remote?+
This Security & Endpoint Engineer position is listed as remote (United States).
What is the salary for the Security & Endpoint Engineer role at Brightpath Technologies?+
The listing states Estimated 100k-231k USD.
What seniority level is this Security & Endpoint Engineer role?+
This is a senior level position.
How do I apply for the Security & Endpoint Engineer role at Brightpath Technologies?+
Use the "Apply on himalayas" button to open the original posting on himalayas, where you can submit your application directly to Brightpath Technologies.