We are seeking a highly skilled Security Engineer to design, implement, and maintain enterprise‑grade endpoint security controls across our global environment. This role is responsible for safeguarding laptops, workstations, servers, and mobile devices by ensuring they remain resilient against evolving cyber threats. The ideal candidate brings deep technical expertise in endpoint security platforms, threat detection and incident response.

The day-to-day responsibilities include but are not limited to:

• Deploy, configure, and maintain endpoint protection solutions.

• Monitor endpoint health, security alerts, and compliance posture across the environment.

• Tune detection rules, behavioral analytics, and security policies to reduce false positives while strengthening threat coverage.

• Perform regular assessments to validate tool effectiveness and coverage across all asset types.

• Collaborate with other security teams to enhance detection logic and improve response workflows.

• Work closely with the business to ensure secure configurations are continuously enforced.

• Evaluate and implement new endpoint protection technologies and security features.

• Participate in designing endpoint‑related components of the enterprise security architecture.

• Develop automation for deployment, health monitoring, and threat response where possible.

• Ensure endpoint security solutions support regulatory requirements (e.g., ISO 27001, NIST CSF, GDPR).

• Produce reports and dashboards showing endpoint security posture, tool adoption, and risk metrics.

• Contribute to policy and standard development related to endpoint security.

Requirements:

• Minimum 3-5 years of experience in Information Security related positions.

• Proven experience in endpoint protection engineering or security operations.

• Strong understanding of Windows, Linux, and macOS internals.

• Familiarity with MITRE ATT&CK, malware behavior, and common intrusion techniques.

• Knowledge of scripting/automation (PowerShell, Python, Bash).

• Ability to analyze logs and telemetry from EDR, SIEM, and OS native tools.

• Strong analytical and problem‑solving mindset.

• Excellent communication skills across technical and non‑technical audiences.

• Ability to work independently and collaboratively in fast‑paced environments.

• Proactive approach to improving processes and security posture.

Preferred / nice‑to‑have

• Security certifications such as GCIA, GCIH, GCED, CEH, Security+

• Experience with mobile device management (MDM/UEM) such as Intune or Jamf.

• Experience with Zero Trust and identity‑centric endpoint security architecture.

• Exposure to cloud endpoint security and hybrid identity environments.

About Kroll

In a world of disruption and increasingly complex business challenges, our professionals bring truth into focus with the Kroll Lens. Our sharp analytical skills, paired with the latest technology, allow us to give our clients clarity - not just answers - in all areas of business. We value the diverse backgrounds and perspectives that enable us to think globally. As part of One team, One Kroll, you’ll contribute to a supportive and collaborative work environment that empowers you to excel.

Kroll is the premier global valuation and corporate finance advisor with expertise in complex valuation, disputes and investigations, M&A, restructuring, and compliance and regulatory consulting. Our professionals balance analytical skills, deep market insight and independence to help our clients make sound decisions. As an organization, we think globally—and encourage our people to do the same.

Kroll is committed to equal opportunity and diversity, and recruits people based on merit.

In order to be considered for a position, you must formally apply via careers.kroll.com

#LI-Hybrid

#LI-JC1