Cybersecurity Endpoint Sr Engineer (Hybrid - Tijuana)

Insulet started in 2000 with an idea and a mission to enable our customers to enjoy simplicity, freedom and healthier lives through the use of our Omnipod® product platform. In the last two decades we have improved the lives of hundreds of thousands of patients by using innovative technology that is wearable, waterproof, and lifestyle accommodating.

We are looking for highly motivated, performance driven individuals to be a part of our expanding team. We do this by hiring amazing people guided by shared values who exceed customer expectations. Our continued success depends on it!

Job Title: Cybersecurity Endpoint Sr. Engineer

Manager: Senior manager, Cybersecurity

FLSA Status: Exempt

Position overview:                         

The Cyber Security Endpoint Sr Engineer will play a critical role in ensuring the security and integrity of endpoint devices used within Insulet. This position involves analyzing endpoint security policies, following up on findings from red team and threat intelligence reports, recommending secure endpoint configurations, managing policies for endpoint security tools, auditing systems for compliance to secure configurations, and reviewing policies and procedures around endpoint security.

Responsibilities

• Collaborate with IT teams and the business in the planning, implementation, and ongoing support of secure enterprise devices. 
• Maintain and update roadmaps for endpoint security projects.
• Evaluate and ensure that endpoint security policies are properly configured and aligned with industry best practices, including CIS benchmarks.
• Address and remediate findings related to endpoints from red team and threat intelligence reports, ensuring that vulnerabilities are mitigated effectively.
• Provide recommendations to external teams for secure configurations to be used on various types of devices, including user endpoints and mobile devices.
• Collaborate with cyber security identity and access management (IAM) to configure endpoint security policies for conditional access.
• Create technical and procedural security controls for legacy technologies.
• Oversee and manage Mobile Device Management (MDM) and Mobile Application Management (MAM) policies to ensure that mobile devices are secure and compliant with organizational standards.
• Collaborate and configure endpoint security tool policies for various technologies including endpoint detection and response (EDR), virtual private network applications (VPN), secure web gateway (SWG), DLP (data loss prevention), browser isolation, and more.
• Conduct regular audits of endpoint systems to verify that they are configured securely and in accordance with established policies.
• Continuously review and update policies and procedures related to endpoint security to ensure they remain effective and up-to-date.
• Report and present on endpoint security metrics and KPIs on a regular basis.
• Stay current with emerging cybersecurity threats and technologies and continuously seek opportunities to improve endpoint security measures.
• Knowledge of IT security best practices for operating systems, endpoint and virtual desktop environments, software, and mobile devices.
• In-depth knowledge of endpoint operating systems including Windows, MacOS, and Linux.
• Problem solving and analytical skills.
• Ability to create solutions to complex problems
• Familiarity with regulatory frameworks (NIST CSF, ISO 27001, HIPAA, GDPR).
• Quantitative risk assessment skills.
• General knowledge of endpoint security tools like EDR, IDS, MAM, MDM, VPN, SWG, DLP, browser isolation, and etc.
• Knowledge of Agile SAFe.

Education and Experience

• Bachelor’s degree or an equivalent combination of education and experience preferred
• 5 - 7 years of Information Security or relevant IT experience preferred
• Preferred DoD Approved 8570 Baseline Certification in IAT Level I, IAM Level I, or higher

NOTE: This position is eligible for hybrid working arrangements and requires on-site work from an Insulet office at least three (3) days per week. #LI-Hybrid