Job Summary
Job Summary:
We are seeking a highly experienced Level 3 Endpoint Security Engineer specializing in Encryption technologies, particularly Microsoft BitLocker. The candidate will be responsible for designing, implementing, and managing enterprise-wide encryption solutions to ensure data protection, compliance, and endpoint security posture.
Key Responsibilities
Key Responsibilities:
- Design and implement enterprise endpoint encryption solutions using BitLocker
- Define encryption policies, key management strategies, and compliance frameworks
- Manage BitLocker deployment via Group Policy, Intune, or SCCM
- Oversee encryption lifecycle including provisioning, recovery, and compliance monitoring
- Troubleshoot advanced encryption and key recovery issues
- Ensure secure storage and management of recovery keys (Azure AD / AD DS)
- Integrate encryption solutions with endpoint security and EDR platforms
- Conduct security assessments and audits related to data protection
- Develop automation scripts for BitLocker deployment and reporting
- Mentor L1/L2 teams and act as escalation point for encryption-related issues
Skill Requirements
Required Skills:
- Strong expertise in Microsoft BitLocker Drive Encryption
- Experience with Group Policy, Intune, SCCM for endpoint management
- Knowledge of encryption standards and key management concepts
- Experience with Active Directory / Azure AD integration
- Strong troubleshooting and problem-solving skills
- Understanding of endpoint security frameworks and compliance requirements
Other Requirements
Good to Have:
- Experience with other encryption tools (McAfee, Symantec Endpoint Encryption)
- Exposure to Microsoft Purview / Data Protection solutions
- Scripting skills (PowerShell for automation)
Certifications (Preferred):
- Microsoft SC-300 / SC-400
- CISSP / CISM
Soft Skills:
- Strong stakeholder and client management
- Leadership and mentoring capabilities
- Excellent communication and documentation skills
- Ability to drive strategic security initiatives