SeniorSecurityEngineer,CyberDefensePlatforms

**Who we are looking for** We are looking for a **Senior Security Engineer, Cyber Defense Platforms** reporting directly to the **Head of Defensive Engineering and Architecture**. This role is hands‑on and engineering‑focused, responsible for **hardening enterprise endpoints (workstations and servers)** to reduce attack surface across the environment. You will enforce secure configurations, minimize unnecessary services, and support execution control mechanisms in alignment with established security standards and architectural guidance. The role requires close collaboration with **Network Security (NetSec)** teams to reduce endpoint‑to‑network exposure (e.g., restricted protocol usage, dependency reduction, and Zero Trust enforcement impacts), as well as with **Data Security (DataSec)** teams to support endpoint controls that protect sensitive data, prevent unauthorized tools, and ensure alignment with approved software and data protection policies **Why this role is important to us** The team you will be joining is part of the **Integrated** **Defensive Engineering and Architecture(IDEA) - Cyber Defense function** , which is critical to reducing enterprise cyber risk and strengthening resilience against modern threats. This role is vital because a significant portion of enterprise risk resides at the **endpoint layer** , where misconfigurations, excess privileges, and unapproved software are commonly exploited. By systematically reducing attack surface and enforcing strong endpoint controls, this role directly contributes to: * Lower likelihood of ransomware and malware propagation * Stronger Zero Trust posture * Improved protection of sensitive and regulated data * Measurable reduction in cyber risk at scale **What you will be responsible for** As a **Senior Security Engineer, Cyber Defense Platforms** , you will: * Design, implement, and maintain **endpoint hardening standards** across workstations and servers, aligned with CIS benchmarks, internal standards, and