Technology Risk - Global Cyber Defense & Intel - Endpoint Security Engineer - AssociateDallas, Texas, United States
Technology Risk - Global Cyber Defense & Intel - Endpoint Security Engineer - Associate
Technology Risk - Global Cyber Defense & Intel - Endpoint Security Engineer - AssociateDallas, Texas, United States

Business Unit Overview

Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring cybersecurity risk, and designing and driving implementation of cybersecurity controls. The team has global presence across the Americas, APAC, India and EMEA. Within Technology Risk, the Global Cyber Intelligence Defense team manages the lifecycle of EDR agents within GS technologies, including deploying EDR agents, configuring detection and prevention policies, and operational monitoring. We are a team of security, software and product engineers that allow the firm to respond appropriately to cyber security risks using detection, design and development.

 

Role

In this role, you will join firm’s global Endpoint security team to develop, architect and deploy on premise and cloud solutions for Endpoint security. This role requires ensuring all endpoint devices across the firm are secure and compliant with cyber security policies

We are looking for an Endpoint security Engineer with strong hands-on experience in Python scripting, CI/CD pipelines, endpoint security. The ideal candidate must have expertise in implementing Prisma runtime Defender, Microsoft Defender for endpoint, Crowdstrike, Carbon Black response and Bit9.

 

Job Responsibilities:

  • Deploy and configure Microsoft Defender for Endpoint across windows and macOS devices.
  • Manage large scale rollout and policy tuning of Crowdstrike Falcon sensors across endpoints and cloud workloads.
  • Implement and maintain Prisma cloud runtime defender for container security within cloud native environments 
  • Administer Carbon black response agents, including sensor health checks, group assignments, and policy updates.
  • Configure and enforce application control polices using Bit9, including whitelisting, exception handling and agent deployment.
  • Automate agent deployment and health monitoring through PowerShell, Python, or CI/CD pipelines.
  • Integrate endpoint security tools with SIEM and monitoring platforms using native APIs and custom connectors.
  • Develop and maintain dashboards and reports to track agent coverage, deployment success rates, and policy compliance.
  • Troubleshoot installation issues and coordinate with infrastructure teams to ensure proper agent functionality across all environments.
  • Maintain documentation, SOPs, and automated workflows for consistent deployment and administration of all endpoint security tools.
  • Implement and manage security controls within AWS environments.

 

Basic Qualifications:

  • Minimum 2-4 years of strong hands-on experience with endpoint security tools such as MDE, CrowdStrike, Prisma Defender, CBR, and Bit9.
  • Deploy, monitor, and manage EDR tools which includes agent upgrades, performance testing and certification of new agents.
  • Provide technical support, including monitoring, reporting, tool administration, and documentation.
  • Experience with Git, CI/CD pipelines, manage resource deployment using Terraform and AWS CDK.
  • Deep understanding of container security (ECS, EKS, GKE) and Kubernetes security best practices.
  • Work experience on any major public clouds such as AWS, GCP and Azure.
  • Hands on experience and knowledge on major Linux OS distribution are must.
  • Python and Bash scripting skills for automation and integration is desirable. Knowing Typescript is an added advantage.
  • Strong analytical skills to identify, prioritize, and remediate security risks.
  • Identify, integrate, monitor and improve infosec controls/tools by understanding business processes.
  • Strong English verbal and written communication skills
  • Strong presentation skills
  • Strong sense of ownership and driven to manage tasks to completion

#TechRiskCybersecurity

 

ABOUT GOLDMAN SACHS

The Goldman Sachs Group, Inc. is a leading global investment banking, securities and investment management firm that provides a wide range of financial services to a substantial and diversified client base that includes corporations, financial institutions, governments and individuals. Founded in 1869, the firm is headquartered in New York and maintains offices in all major financial centers around the world.