CrawlJobs Logo

Senior Lead Endpoint Security

capitalone.com Logo

Capital One

Location Icon

Location:
United States , McLean

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

209000.00 - 286200.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

Senior Lead Endpoint Security. Do you love building and pioneering in the technology space? Do you enjoy solving complex technical problems in a fast-paced, collaborative, inclusive, and iterative delivery environment? At Capital One, you'll be part of a big group of makers, breakers, doers and disruptors, who love to solve real problems and meet real customer needs.

Job Responsibility:

  • Identify exploits, gaps and vulnerabilities in existing security posture
  • Work with product owners and engineering leads to document and mitigate findings
  • Work within and across Agile teams to design, develop, test, implement and support technical solutions across a full-stack of development tools and technologies
  • Lead the craftsmanship, availability, resilience and scalability of your solutions
  • Bring a passion to stay on top of tech trends, experiment with and learn new technologies, participate in internal & external technology communities, and mentor other members of the engineering community
  • Encourage innovation, implementation of cutting-edge technologies, inclusion, outside-of-the-box thinking, teamwork, self-organization and diversity

Requirements:

  • High School Diploma, GED, or equivalent certification
  • At least 6 years of experience working in cybersecurity or information technology
  • At least 6 years of experience with endpoint security
  • At least 2 years of experience with cloud and container technologies
  • At least 2 years of experience securing various OS environments (Mac, Microsoft, Linux)
  • At least 2 years of experience securing developer environments

Nice to have:

  • 8+ years of experience in security tools (AV/EDR, Application Control, Data Loss Prevention, Firewall, Log Management, Privilege Access Management, System Hardening, Behavior Analysis, Hunt and Response, Vulnerability Management)
  • 4+ years of experience with configuration and incident management
  • 4+ years of experience with AWS (EC2 instances, Lambda functions, RDS, Route53)
  • 3+ years of experience with Red Team, Vulnerability Management, Threat Intelligence and Threat Hunting
  • Proficient knowledge of common cybersecurity frameworks and standards such as MITRE ATT&CK, NIST, and OWASP
  • Advanced understanding of network protocols, infrastructure, and operating systems (Windows, Linux, macOS)
  • Proven experience in exploiting vulnerabilities in web applications, networks, systems and data store
  • Experience with log collection and using SIEM platforms for querying and analyzing log data
  • Experience with programming or scripting languages (Python or Go)
  • Ability to write SQL queries
  • Ability to work independently and in large distributed teams
  • Excellent communication skills
What we offer:
  • comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being
  • performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)

Additional Information:

Job Posted:
February 14, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
Capital One - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Lead Endpoint Security

Senior Security Engineer

Senior Security Engineer – Remote (US) – Competitive Salary Opportunity to work ...
Location
Location
United States
Salary
Salary:
Not provided
weareorbis.com Logo
Orbis Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or related technical field
  • 5+ years of hands-on experience in security engineering or related roles
  • Expertise in secure software development, architecture design, threat modeling, CI/CD pipelines, and risk assessment
  • Deep knowledge of network, system, database, and application layer attack patterns and mitigation methods
  • Ability to clearly communicate complex concepts appropriately to multiple audience types
  • Coding skills necessary to discover and patch issues Node, TypeScript/React, Python
  • Solid understanding and experience with AWS, Heroku, Netlify, and Snowflake, including policy, configurations, and security management tooling
  • Proven track record with SOC 2, PCI DSS, or similar compliance frameworks and reporting
  • Experience working in startup or high-growth environments, fintech, and/or highly regulated industries preferred
  • Cloud security certifications with evidence of continued education in the area of security are a plus
Job Responsibility
Job Responsibility
  • Vulnerability Management: Conduct regular vulnerability assessments, penetration testing, and security audits to identify and remediate security gaps across our cloud infrastructure and applications
  • Security Monitoring: Monitor systems for security threats, suspicious behavior, and anomalies using SIEM tools and security monitoring and vulnerability platforms like CrowdStrike and Nessus
  • Incident Response: Lead security incident response efforts, investigate suspicious reports, and implement preventative measures that may be warranted
  • Code Security Reviews: Review and approve code (Node, React, Python) that accesses to data, authentication, or integrations, ensuring secure development practices are followed
  • Cross-functional Collaboration: Work closely with engineering and operations teams, including executive stakeholders and occasionally third-party service providers, to integrate security best practices into development and deployment processes
  • Architecture Review: Evaluate and provide security recommendations for system architecture changes (e.g. network segmentation, microservices, virtual environments, data warehousing, etc) and new feature implementations, including the evaluation of AI enablement opportunities
  • Cloud Security: Secure cloud deployments (AWS/Heroku/Netlify), including configuration of firewalls, IAM policies, VPCs, databases/data warehouses (PostgreSQL, Snowflake), API security, container security, and network monitoring
  • Access Controls: Manage and maintain access controls across server environments, implementing principle of least privilege
  • Data Classification: Advise and audit the proper handling of data in accordance with privacy and security requirements and data classification policies
  • Integration Security: Review and assess security implications of all third-party integrations and vendor relationships
  • Fulltime
Read More
Arrow Right

Senior Security Incident Response Analyst

We are looking for an Incident Responder with robust technical skills, expertise...
Location
Location
Poland , Gdańsk
Salary
Salary:
256000.00 - 342000.00 PLN / Year
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in security domains like Operations, Incident Response, Detection Engineering, Threat Research, or Engineering, with relevant incident response and investigation experience
  • Proficiency in modern programming languages (Python, Ruby, Java, Go) or scripting for security tasks
  • Experience with AWS, GCP, or similar cloud platforms
  • Experience in building and delivering projects from start to finish
  • Expertise in areas such as malware analysis, forensics, threat hunting, network analysis, or cloud endpoint analysis
  • Contributions to the security community or open source projects
  • Capable of explaining technical issues to non-technical stakeholders
Job Responsibility
Job Responsibility
  • Security Incident Management: Act as an escalation point, collaborate with partners, communicate updates, and work towards resolution. Participate in on-call roster and conduct post-incident reviews to analyze causes and recommend improvements
  • Investigation and Analysis: Investigate log data from multiple sources for signs of compromise, conduct threat hunts, research threat actor tools and tactics, and lead evidence collection and forensic analysis
  • Technical Solutions and Automation: Provide technical solutions to reduce incidents, build and maintain tools for automation, and develop security incident response guides and procedures
  • Advocacy and Training: Advocate for security best practices and secure coding standards, and conduct tabletop exercises and simulations to test and improve incident response readiness
What we offer
What we offer
  • health and wellbeing resources
  • paid volunteer days
  • Fulltime
Read More
Arrow Right

Senior Security Researcher - ITDR (Cortex)

We are looking for a Senior Security Researcher to join our Identity Threat Dete...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 5 years’ experience with Active Directory security and identity related attacks
  • 2+ years of experience with Entra ID (formerly Azure AD) or SAAS application - Advantage
  • In-depth knowledge of the inner-workings of operating systems
  • In-depth Knowledge of network protocols, including but not limited to Kerberos, RPC, SMB, HTTP, SMTP, DNS, DHCP, etc
  • In-depth knowledge of enterprise infrastructure, including Active Directory, FW, VPN, Security products, etc
  • At least 2 Years of experience coding Python - Advantage
  • Strong knowledge of SQL language - Advantage
  • Experience with red-teaming / pentest of Entra ID - Advantage
  • Experience with machine learning / data analysis / cloud infrastructure / security - Advantage
  • Ability to drive and own projects from start to finish
Job Responsibility
Job Responsibility
  • Research the evolving threat landscape and develop advanced detections to protect SAAS, Cloud, on-premises, and hybrid identities
  • Focus on identifying and mitigating identity-related threats across networks, endpoints, and cloud environments, using statistical classification methods to build effective detection models and protecting customers at scale
  • Collaborate with cross-functional teams, validate detection concepts on real-world data, and continuously enhance detection capabilities to stay ahead of emerging threats
  • Research innovative methods for detecting targeted attackers operating in endpoints, networks, cloud and SAAS environments
  • Simulate real-world attacks in lab environments and conduct a deep analysis of the behavior
  • Develop and refine statistics-based classification algorithms and techniques to create and improve detection models
  • Research specific scenarios to enhance our model's capabilities
  • Collaborate within a diverse research group, improving our research processes and leading us to be a better team creating a better product
  • Stay informed on the latest APTs, attacker methodologies, and TTPs to ensure our models stay ahead of emerging threats
Read More
Arrow Right

Senior Security Engineer

Senior Security Engineer – Remote (US) – Competitive Salary Opportunity to work ...
Location
Location
United States
Salary
Salary:
Not provided
weareorbis.com Logo
Orbis Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or related technical field
  • 5+ years of hands-on experience in security engineering or related roles
  • Expertise in secure software development, architecture design, threat modeling, CI/CD pipelines, and risk assessment
  • Deep knowledge of network, system, database, and application layer attack patterns and mitigation methods
  • Ability to clearly communicate complex concepts appropriately to multiple audience types
  • Coding skills necessary to discover and patch issues Node, TypeScript/React, Python
  • Solid understanding and experience with AWS, Heroku, Netlify, and Snowflake, including policy, configurations, and security management tooling
  • Proven track record with SOC 2, PCI DSS, or similar compliance frameworks and reporting
  • Experience working in startup or high-growth environments, fintech, and/or highly regulated industries preferred
  • Cloud security certifications with evidence of continued education in the area of security are a plus
Job Responsibility
Job Responsibility
  • Conduct regular vulnerability assessments, penetration testing, and security audits to identify and remediate security gaps across our cloud infrastructure and applications
  • Monitor systems for security threats, suspicious behavior, and anomalies using SIEM tools and security monitoring and vulnerability platforms like CrowdStrike and Nessus
  • Lead security incident response efforts, investigate suspicious reports, and implement preventative measures that may be warranted
  • Review and approve code (Node, React, Python) that accesses to data, authentication, or integrations, ensuring secure development practices are followed
  • Work closely with engineering and operations teams, including executive stakeholders and occasionally third-party service providers, to integrate security best practices into development and deployment processes
  • Evaluate and provide security recommendations for system architecture changes (e.g. network segmentation, microservices, virtual environments, data warehousing, etc) and new feature implementations, including the evaluation of AI enablement opportunities
  • Secure cloud deployments (AWS/Heroku/Netlify), including configuration of firewalls, IAM policies, VPCs, databases/data warehouses (PostgreSQL, Snowflake), API security, container security, and network monitoring
  • Manage and maintain access controls across server environments, implementing principle of least privilege
  • Advise and audit the proper handling of data in accordance with privacy and security requirements and data classification policies
  • Review and assess security implications of all third-party integrations and vendor relationships
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, Corporate Security

We are hiring a Senior Corporate Security Engineer to own and scale the security...
Location
Location
Salary
Salary:
Not provided
turnkey.com Logo
Turnkey
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in corporate and/or enterprise security, IT security, or endpoint security engineering
  • Hands-on experience with: MDM Platforms (JAMF, Kandji, Intune, or similar)
  • EDR/XDR solutions (Cloudstrike, SentinelOne, Microsoft Defender, etc.)
  • Identity and Access Management (Okta, Azure AD/Entra ID, etc.)
  • Authentication Protocols (SAML, OAuth, OIDC, SCIM, etc.)
  • Zero-trust principles (device trust, conditional access, least-privilege models)
  • Cloud security experience (AWS, GCP)
  • macOS security expertise (architecture, hardening, and fleet management)
  • Security-first mindset with practical knowledge of defense-in-depth and risk-based security
Job Responsibility
Job Responsibility
  • Build & Secure Corporate Infrastructure: Design, implement, and manage security for endpoints and distributed systems
  • deploy and operate our security stack (MDM, EDR/XDR, ZTNA, SSO)
  • enforce zero-trust principles, least-privilege access, and hardening standards
  • Drive Security Initiatives & Risk Reduction: Lead initiatives around endpoint hardening, access controls, and vendor risk
  • conduct security design reviews, risk assessments, and vulnerability remediation
  • develop and enforce security policies and best practices.
  • Detection, Response & Automation: Respond to security incidents with urgency and technical depth
  • collaborate on detection rules, alerts, and monitoring
  • automate workflows and create runbooks and playbooks to scale security operations efficiently.
  • Foster Security Culture & Education: Evangelize security best practices, build awareness programs, and partner with teams to embed “secure by default” principles into workflows
What we offer
What we offer
  • Full benefits, including medical, dental, vision, life, disability, HSA/FSA, 401(k)
  • Paid parental leave
  • Unlimited PTO
  • $3,000/yr learning and development budget to attend industry conferences
  • Multiple team offsites per year
  • Macbook Pro laptop
  • Lunch stipend (for those physically in the New York City office)
  • Fulltime
Read More
Arrow Right

Senior Desktop Engineer

We are seeking a Senior Desktop Engineer to provide technical leadership for an ...
Location
Location
United States , Horsham
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5–7+ years of experience in desktop engineering or endpoint management, including a senior or lead role
  • Strong hands‑on experience with Microsoft Intune (non‑negotiable)
  • Advanced knowledge of Windows endpoint administration
  • Experience implementing automated or zero‑touch deployment solutions
  • Proven experience in endpoint security, compliance, and configuration policies
  • Working knowledge of vulnerability management in regulated environments
  • Experience with application packaging and enterprise software deployment
  • Ability to lead technical initiatives and make architectural decisions
  • Strong communication and audit‑ready documentation skills
Job Responsibility
Job Responsibility
  • Lead the design, deployment, and lifecycle management of enterprise desktop, laptop, and mobile environments
  • Architect and maintain modern endpoint management platforms (e.g., Microsoft Intune or equivalent)
  • Establish and enforce endpoint standards, baselines, and best practices
  • Oversee application packaging, testing, deployment, and lifecycle management
  • Serve as the highest‑level escalation point for complex endpoint incidents
  • Own endpoint compliance controls aligned with regulatory and audit requirements
  • Lead patching, remediation planning, and endpoint vulnerability management
  • Monitor and remediate endpoint security posture (encryption, EDR, baselines, device health)
  • Maintain documentation and evidence for internal and external audits
  • Partner with security and risk teams to mature endpoint control frameworks
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Read More
Arrow Right
New

Secops Lead

Serves as the Lead Cybersecurity Operations (SECOPS) contractor, providing senio...
Location
Location
United States , Washington, DC
Salary
Salary:
Not provided
aac.com Logo
AAC
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated ability to guide technical discussions and provide expert advisory support to senior government officials, including the CISO, system owners, SOC staff, and executive leadership, while operating under government direction
  • Proven experience as a SOC Lead or Senior Team Lead, successfully coordinating with managed security service providers (MSSPs) and external cybersecurity partners (e.g., CISA, CYBERCOM) in support of incident response (IR), incident handling (IH), and vulnerability management (VM) activities), including mitigating actions to contain activity and facilitating forensics analysis when necessary
  • Documented experience conducting and guiding in-depth technical evaluations of INFOSEC, IT security, and cybersecurity tactics, techniques, and procedures (TTPs), including their impact on baseline system configurations
  • Demonstrated proficiency providing cybersecurity posture assessments, hygiene reporting, and technical input in support of Governance, Risk, and Compliance (GRC) activities and continuous monitoring programs
  • Experience providing incident response support to network subscribers, including recommending mitigating actions, supporting containment efforts, and facilitating forensic analysis under government oversight
  • Demonstrated expertise in log-based and endpoint-based threat detection, threat hunting, and analysis across multiple threat sources
  • Strong technical knowledge of web services security, Microsoft cloud environments (Azure, M365), and modern enterprise security architectures
  • Advanced experience evaluating the security of complex web portals, APIs, and databases (e.g., Java, Ruby, SQL, Oracle) using commercial and open-source security assessment tools such as SQLmap and mongoaudit
  • Near-expert proficiency in: Web application security testing frameworks (e.g., NMAP, W3af)
  • Continuous monitoring and remediation tools (e.g., Azure Security Center, Defender for Cloud, Qualys, Wireshark)
Job Responsibility
Job Responsibility
  • Serves as the Lead Cybersecurity Operations (SECOPS) contractor, providing senior-level technical leadership and operational support to the Agency’s IT Security Program
  • Supports and coordinates SECOPS activities under government direction and maintains technical inputs to the Agency’s IT Security Program
  • Provides senior technical advisory support to the Chief Information Security Officer (CISO) on developments in cybersecurity, information security (INFOSEC), and IT security, including emerging threat vectors, advanced persistent threats (APTs), attack surface analysis, and identified weaknesses
  • Supports Agency-level technical implementation of approved cybersecurity policies, standards, and directives by developing technical documentation, implementation guidance, and draft procedures for government review and approval
  • Leads day-to-day contractor cybersecurity operations activities within the SECOPS function, supporting government-led oversight of systems and services that impact the Agency’s mission and critical infrastructure
  • Implements and administers cybersecurity incident handling (IH) and incident response (IR) capabilities, including SIEM dashboards, detection inputs, incident response playbooks, and operational metrics, to improve efficiency and effectiveness of security operations
  • Facilitates and coordinates SECOPS activities in support of the Agency’s Information Security (INFOSEC) Program, assisting Agency system security personnel and Information System Security Officers (ISSOs)
  • Serves as the senior technical advisor for threat, vulnerability, and configuration management activities, providing threat intelligence analysis, mitigation recommendations, and defensive strategy insights to Agency stakeholders
  • Fulltime
Read More
Arrow Right

Senior Corporate Security Specialist

We are seeking a highly experienced Senior Corporate Security Specialist to join...
Location
Location
United States , San Francisco
Salary
Salary:
128000.00 - 171000.00 USD / Year
taskrabbit.com Logo
Taskrabbit
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4–6+ years of experience in IT Support, Systems Administration, Information Security initiatives, with proven ability to execute tasks independently
  • Expert knowledge of Okta (SSO/Lifecycle), Google Workspace Admin, and Slack administration
  • Strong expertise in MDM systems, and maintaining on-site IT support environments
  • Demonstrated commitment to security, including experience implementing compliance frameworks
  • Highly proficient in designing, documenting, and automating scalable systems and processes
  • Exceptional skills in independent problem-solving, analytical reasoning, and complex technical troubleshooting
  • Reliable cross-functional partner with excellent communication, documentation, and stakeholder management skills
  • You are a proactive problem solver with a great sense of team work and accountability
Job Responsibility
Job Responsibility
  • Systems & Identity Management: Administer and automate core identity and access management systems (Okta SSO, Workflows, SAML/OIDC) and collaboration platforms (Google Workspace, Slack) to enforce least privilege, secure authentication, and controlled user lifecycle management in alignment with security framework safeguards
  • Information Security Operations & Implementation: Actively implement, operate, and mature critical security controls, including asset inventory, secure configuration, access control reviews, and continuous monitoring. Detect and respond to threats using tools such as antivirus and security LMS tools to execute phishing simulations, and perform root cause analysis to reduce risk and strengthen the organization’s security posture
  • Endpoint & Configuration Security: Secure and manage endpoints, and enterprise hardware/software through MDM and configuration baselines. Automate enforcement of security controls, patching, and hardening to reduce attack surface and ensure alignment with CIS requirements
  • Workflow Automation: Design and deploy workflow automation to improve IT operations, reduce manual risk and consistently enforce controls across systems
  • Advanced Technical Support: Provide high-quality remote and onsite technical support, including advanced troubleshooting, AV setup, and using automation to resolve common tickets, while advocating for user needs and performing data-driven analysis of complex issues
  • Information Security Project Execution & Collaboration: Lead and execute security-focused initiatives, including framework rollout efforts, control validation, and process improvements. Support change management and clearly communicate security risks, mitigations, and progress to both technical and non-technical stakeholders
  • Documentation & Knowledge Sharing: Create and maintain comprehensive documentation for support interactions, system designs, technical procedures, and internal workflows
  • Incident Response: Serve as an incident responder within a structured rotating on-call schedule, triaging alerts, performing root cause analysis (RCA), and implementing preventative measures to minimize future occurrences
What we offer
What we offer
  • Taskrabbit offers our employees with employer-paid health insurance and a 401k match with immediate vesting for our US based employees
  • We offer all of our global employees generous and flexible time off with 2 company-wide closure weeks, Taskrabbit product stipends, wellness + productivity + education stipends, IKEA discounts, reproductive health support, and more
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy