Senior Cybersecurity Engineer – Endpoint Security (AI Enabled Operations)

AT&TCharlotte, NC
$128,400 - $192,600Onsite

About The Position

We are seeking a Senior Cybersecurity Engineer to secure and modernize our enterprise endpoint security environment. The role will support broader endpoint security platforms such as EDR, DLP, VPN, secure web access, and endpoint visibility platforms. Across both mobile and endpoint domains, the role emphasizes AI‑enabled monitoring, analytics, triage, automation, and reporting to improve security outcomes while reducing operational overhead. This is a hands‑on engineering role operating at enterprise scale, working closely with Security Operations, Endpoint, IT, and business teams.

Requirements

  • 3+ years of experience in endpoint security or enterprise endpoint engineering.
  • Experience supporting at least one endpoint security technology (EDR, DLP, VPN, proxy/web, or endpoint visibility platforms).
  • Strong understanding of endpoint operating systems (Windows, iOS, Android; macOS/Linux a plus).
  • Proven troubleshooting and analytical skills in large enterprise environments.
  • Strong written and verbal communication skills.
  • Experience using AI, analytics, or automation to improve security operations or IT workflows.
  • Practical exposure to: Alert triage and signal correlation, Risk scoring or posture analysis, Trend analysis and operational reporting, Documentation or support automation.
  • Ability to apply AI responsibly and pragmatically to improve security outcomes and reduce operational friction.

Nice To Haves

  • Experience supporting 10,000+ endpoints.
  • Familiarity with compliance or regulatory requirements impacting endpoint and mobile security (e.g., GDPR, HIPAA).
  • Scripting or automation experience (e.g., PowerShell, Python, REST APIs).
  • Security or platform certifications (e.g., CompTIA Security+, Microsoft Security certifications, vendor‑specific endpoint, mobility, or Tanium certifications).

Responsibilities

  • Support and help engineer endpoint security controls for: Endpoint Detection & Response (EDR) (e.g., SentinelOne, Microsoft Defender, Cortex XDR), Data Loss Prevention (DLP) (e.g., Microsoft Purview/Defender, Forcepoint), Remote Access VPN (e.g., Palo Alto GlobalProtect or equivalent), Proxy / Secure Web Access controls (endpoint agent and policy enforcement where applicable), Endpoint visibility, posture, and response platforms (e.g., Tanium or equivalent endpoint management and telemetry platforms).
  • Provide Tier‑3 engineering support, including troubleshooting, policy tuning, exclusions, performance analysis, and vendor escalation.
  • Standardize endpoint security baselines and deployment patterns to ensure consistent control coverage and user experience.
  • Extend and adapt AI‑driven intake, enrichment, and approval workflows established in Mobile Security Operations to endpoint security use cases, including: Automated triage of endpoint security exceptions and access requests, Correlation of endpoint posture, telemetry, and behavioral signals to defined risk criteria, Generation of structured risk and justification summaries to support faster, more consistent decisions.
  • Design and maintain policy‑as‑code and AI‑assisted approval orchestration for endpoint controls, enabling: Fast‑track handling of low‑risk exceptions, Escalation of high‑risk cases for engineering or security review.
  • Integration with EDR, DLP, VPN, proxy, endpoint visibility platforms, and ticketing systems to reduce operational friction and manual effort.
  • Apply AI‑assisted techniques for alert correlation, risk scoring, trend analysis, and control drift detection to continuously improve endpoint security operations.
  • Apply AI and analytics across mobile and endpoint security operations, including: AI‑assisted alert enrichment, correlation, and triage, Risk scoring based on device posture, compliance, vulnerabilities, and behavioral signals, Trend analysis for control coverage, health, drift, and recurring incidents, Automated operational, compliance, and executive‑level reporting.
  • Develop or support automation using APIs and scripting to: Improve policy deployment and exception handling, Accelerate incident response actions, Reduce repetitive manual tasks and administrative overhead.
  • Partner with Security Operations, Endpoint, IT, and business teams to align security controls with operational needs.
  • Translate technical security requirements into clear, actionable guidance for technical and non‑technical stakeholders.
  • Maintain runbooks, standards, and operational documentation, leveraging AI‑enabled tools to keep content current and consistent.
  • Support continuous improvement through root cause analysis, metrics, and feedback loops.

Benefits

  • Medical/Dental/Vision coverage
  • 401(k) plan
  • Tuition reimbursement program
  • Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)
  • Paid Parental Leave
  • Paid Caregiver Leave
  • Additional sick leave beyond what state and local law require may be available but is unprotected
  • Adoption Reimbursement
  • Disability Benefits (short term and long term)
  • Life and Accidental Death Insurance
  • Supplemental benefit programs: critical illness/accident hospital indemnity/group legal
  • Employee Assistance Programs (EAP)
  • Extensive employee wellness programs
  • Employee discounts up to 50% off on eligible AT&T mobility plans and accessories, AT&T internet (and fiber where available) and AT&T phone
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service