Email and Endpoint Security Engineer

You know the moment. It’s the first notes of that song you love, the intro to your favorite movie, or simply the sound of someone you love saying “hello.” It’s in these moments that sound matters most. 

At Bose, we believe sound is the most powerful force on earth. We’ve dedicated ourselves to improving it for more than 60 years. And we’re passionate down to our bones about making whatever you’re listening to a little more magical.

 

The Information Technology team at Bose exists to deliver valuable and reliable business and technology solutions with an innovative, engaged, and collaborative team focused on contributing to our corporate vision.

Job Description

Position Summary

The Email and Endpoint Security Engineer is responsible for strengthening the organization’s overall security posture by managing and enhancing both endpoint protection and email security infrastructure. This role involves the deployment, configuration, and continuous monitoring of EDR (Endpoint Detection & Response) solutions to ensure broad and reliable device coverage aligned with security policies and compliance requirements.

Additionally, the engineer will oversee enterprise email security platforms, fine-tuning detection rules, managing authentication protocols (DMARC, SPF, DKIM), and leading the response to phishing and other email-based threats. This is a hands-on role requiring a deep understanding of both endpoint and email threat landscapes, along with the ability to drive detection and remediation efforts across the organization.

Primary Responsibilities:

Endpoint Detection & Response (EDR):

• Manages and maintains enterprise EDR solutions, including creating and maintaining documentation for agent updates, installation processes, and troubleshooting procedures.
• Installs and configures EDR agents on endpoints for comprehensive coverage.
• Ensures continuous endpoint monitoring and regular EDR updates.
• Enforces endpoint security policies using the EDR platform, working closely with IT and compliance teams to meet internal security standards and audit requirements.
• Conducts gap assessments and configures tools to identify machines missing the EDR agent.
• Deploys updates and patches to the EDR platform and develops performance metrics or dashboards to track agent status, coverage percentage, and trend improvements over time.

Email Security:

•  Manages and optimizes enterprise email security platforms, ensuring configurations align with industry standards and evolving threat landscape.
• Oversee configuration and policy management for email protection systems, including DMARC, SPF, and DKIM.
•  Refines detection rules and filters to proactively block phishing attempts, malware-laden attachments, and other email-borne threats.
• Regularly reviews DMARC logs to identify unauthorized email activity and implements corrective actions.
• Continuously monitor email traffic for suspicious patterns, investigating and responding to real-time threats to minimize risk and impact.
• Performs periodic audits and assessments of email security configurations, identifying and addressing any gaps or vulnerabilities.
•  Collaborates with GRC teams to develop and execute phishing simulations and awareness campaigns, aligning training with observed threat patterns.
• Provides ongoing feedback and work cross-functionally to improve the overall effectiveness of email security controls and user reporting.

Qualifications

• 5 years of experience in managing EDR solutions, including agent deployments, configuration, and ongoing monitoring across diverse environments,
• Relevant certifications such as GCIA, GCIH, ECIH, or equivalent are preferred.
• Strong knowledge of email security technologies and best practices, including DMARC, SPF, and DKIM to protect against spoofing and domain abuse.
• Experience in conducting security gap assessments and deploying updates to improve security metrics.
• Proficiency in configuring and managing enterprise-grade email protection platform to detect, block and respond to phishing attacks, malware threats, and other email-based risks.
• Excellent communication and collaboration skills, to deliver clear feedback and coordinate across technical and non-technical teams to drive continuous improvement.
• Strong analytical and problem-solving skills to identify and mitigate security threats.

Bose is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status, or any other legally protected characteristics. The EEOC’s “Know Your Rights: Workplace discrimination is illegal” Poster is available here: https://www.eeoc.gov/sites/default/files/2023-06/22-088_EEOC_KnowYourRights6.12ScreenRdr.pdf. Bose is committed to providing reasonable accommodations to individuals with disabilities. If you require reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to applicant_disability_accommodationrequest@bose.com. Please include "Application Accommodation Request" in the subject of the email.

Our goal is to create an atmosphere where every candidate feels supported and empowered in the interviewing process. Diversity and inclusion are integral to our success, and we believe that providing reasonable accommodation is not only a legal obligation but also a fundamental aspect of our commitment to being an employer of choice. We recognize that individuals may have different needs and requirements based on their abilities, and we provide reasonable accommodations to ensure ideal conditions are met during the application process.