Job Description

Endpoint Security Engineer

We9re seeking a future team member for the role of Endpoint Security Engineer to join our Cyber team. This role is in Pittsburgh and requires presence in the office 4 days per week.

Role Overview

The Endpoint SecurityEngineer is responsible for the engineering, configuration, and operational support of endpoint security capabilities across user endpoints and server assets, including physical and virtual environments.

This role provides hands-on technical depth across the endpoint security ecosystem, supports policy and architectural direction, identifies gaps and emerging risks, and contributes to the long-term roadmap for tooling and capabilities across the enterprise.

Key Responsibilities

Enterprise Endpoint Security Visibility & Coordination

• Maintain a comprehensive, current-state understanding of endpoint security posture across workstations, laptops, and server assets in on premises and virtualized environments.
• Partner with technology, cybersecurity, risk, and platform teams responsible for endpoint and server security capabilities.
• Provide integrated views and insights into coverage, maturity, and alignment across the endpoint security portfolio.

Policy, Standards, & Architecture Leadership

• Contribute to the development and evolution of enterprise endpoint security standards and reference architectures spanning both user endpoints and server environments.
• Partner with enterprise architecture and control teams to define target-state capabilities and consistent security expectations across heterogeneous endpoint platforms.
• Ensure architectural direction reflects evolving threats, regulatory expectations, and enterprise technology strategy.
• Design, implement, and maintain endpoint security configurations, policies, and detection rules across enterprise tooling platforms. (added)

Gap Identification, Risk Transparency & Escalation

• Identify material gaps, misalignments, or risk concentrations across endpoint and server security capabilities.
• Coordinate stakeholders to assess issues, align on remediation approaches, and elevate risks appropriately through governance channels.
• Support leadership and risk forums with clear articulation of endpoint security posture and priority concerns.

Strategic Roadmap & Capability Planning

• Contribute to the endpoint security strategic roadmap, encompassing capability evolution, technology lifecycle planning, and portfolio rationalization.
• Evaluate and recommend tool selection, capability introduction, and de-duplication across endpoint and server security platforms.
• Support investment planning and sequencing to ensure endpoint security capabilities advance cohesively and at enterprise scale.
• Perform hands-on engineering work including tool deployment, integration, tuning, and troubleshooting across endpoint and server security platforms. (added)

Qualifications

• 8-12 years of experience in cybersecurity or infrastructure with demonstrated depth and breadth in endpoint security concepts and enterprise tooling ecosystems.
• Bachelor9s degree required, Master9s degree preferred
• Ability to collaborate effectively and drive alignment across diverse technical and organizational stakeholders.
• Strong understanding of security architecture, control frameworks, and endpoint engineering best practices.
• Hands-on experience with endpoint security platforms such as CrowdStrike, Microsoft Defender, or equivalent EDR/EPP solutions. (added)
• Excellent communication and synthesis skills, capable of producing clear technical documentation and executive-ready insights.

Our Benefits and Rewards:

BNY offers highly competitive compensation, benefits, and wellbeing programs rooted in a strong culture of excellence and our pay-for-performance philosophy. We provide access to flexible global resources and tools for your life9s journey. Focus on your health, foster your personal resilience, and reach your financial goals as a valued member of our team, along with generous paid leaves, including paid volunteer time, that can support you and your family through moments that matter.

BNY assesses market data to ensure a competitive compensation package for our employees. The expected base salary for this position when employment commences can be found in the Job Info section at the bottom of the posting.

Base salary offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. Base salary is only part of the total rewards package, which may include eligibility for an annual discretionary incentive award. Subject to the terms and conditions of the applicable plans then in effect, eligible employees may enroll in a 401(k) plan as well as participate in Company-sponsored medical, dental, vision, and basic life insurance plans for the employee and the employee9s eligible dependents. Eligible employees also may receive other benefits (including various paid time off benefits, such as vacation and sick time), dependent on the position offered. Details of participation in these benefit plans will be provided if an employee receives an offer of employment.

If hired, the employee will be in an 4at will4 position and the Company reserves the right to modify base salary (as well as any other discretionary payments or compensation programs) at any time, including for reasons related to individual performance, Company or individual department/team performance, and market factors.