Security Engineer– Endpoint Security

<div class="content-intro"><h1><strong>About Workato</strong></h1> <p>Workato transforms technology complexity into business opportunity. As the leader in enterprise orchestration, Workato helps businesses globally streamline operations by connecting data, processes, applications, and experiences. Its AI-powered platform enables teams to navigate complex workflows in real-time, driving efficiency and agility.</p> <p>Trusted by a community of 400,000 global customers, Workato empowers organizations of every size to unlock new value and lead in today’s fast-changing world. Learn how Workato helps businesses of all sizes achieve more at <a class="c-link c-link--underline" href="http://workato.com/" target="_blank" data-stringify-link="http://workato.com" data-sk="tooltip_parent">workato.com</a>.</p> <h1><strong>Why join us?</strong></h1> <p><span style="font-weight: 400;">Ultimately, Workato believes in fostering a </span><strong>flexible, trust-oriented culture that empowers everyone to take full ownership of their roles</strong><span style="font-weight: 400;">. We are driven by </span><strong>innovation </strong><span style="font-weight: 400;">and looking for</span><strong> team players </strong><span style="font-weight: 400;">who want to actively build our company.&nbsp;</span></p> <p><span style="font-weight: 400;">But, we also believe in </span><strong>balancing productivity with self-care</strong><span style="font-weight: 400;">. That’s why we offer all of our employees a vibrant and dynamic work environment </span><a href="http://www.workato.com/careers"><span style="font-weight: 400;">along with a multitude of benefits</span></a><span style="font-weight: 400;"> they can enjoy inside and outside of their work lives.&nbsp;</span></p> <p><span style="font-weight: 400;">If this sounds right up your alley, please submit an application. We look forward to getting to know you!</span></p> <p><span style="font-weight: 400;">Also, feel free to check out why:</span></p> <ul> <li style="font-weight: 400;"> <p><a href="https://www.businessinsider.com/47-enterprise-startups-to-bet-your-career-on-in-2020-2019-12"><span style="font-weight: 400;">Business Insider</span></a><span style="font-weight: 400;"> named us an “enterprise startup to bet your career on”</span></p> </li> <li style="font-weight: 400;"> <p><a href="https://www.forbes.com/cloud100/#a57477b5f941"><span style="font-weight: 400;">Forbes’ Cloud 100</span></a><span style="font-weight: 400;"> recognized us as one of the top 100 private cloud companies in the world</span></p> </li> <li style="font-weight: 400;"> <p><a href="https://www2.deloitte.com/us/en/pages/technology-media-and-telecommunications/articles/fast500-winners.html"><span style="font-weight: 400;">Deloitte Tech Fast 500</span></a><span style="font-weight: 400;"> ranked us as the 17th fastest growing tech company in the Bay Area, and 96th in North America</span></p> </li> <li> <p><a href="https://qz.com/work/2053446/the-best-companies-for-working-from-home/"><span style="font-weight: 400;">Quartz</span></a><span style="font-weight: 400;"> ranked us the #1 best company for remote workers</span></p> </li> </ul></div><h1><strong>Responsibilities</strong></h1> <p>At Workato, security is foundational to our mission. We are seeking a proactive and detail-oriented <strong>Security Engineer – Endpoint Security</strong> to join our expanding Security team in India. In this role, you will be responsible for managing and optimising endpoint security capabilities across our global environment.</p> <p>Your primary responsibility will be to own the lifecycle of Endpoint Detection and Response (EDR) platforms—with SentinelOne preferred—including configuration, policy management, and continuous tuning to enhance our protection and detection posture. You will ensure endpoints remain hardened, compliant, and resilient against evolving threats by integrating security controls, closing vulnerabilities, and maintaining consistent security baselines across Windows, macOS, and Linux systems.</p> <p>As a key member of the security operations ecosystem, you will collaborate closely with IT, Cloud Security, Threat Detection, and Incident Response team members to enrich detection capabilities, support audits, and strengthen endpoint visibility across the organisation.</p> <p>If you are passionate about building robust endpoint defences, modernising detection strategies, and driving scalable security automation, this role is an excellent opportunity for you!</p> <p><span style="font-weight: 400;">&nbsp;You will also be responsible to:</span></p> <ul> <li> <p>Configure, maintain, and optimise the organisation’s Endpoint Detection and Response (EDR) platform, with SentinelOne preferred.</p> </li> <li> <p>Create, refine, and tune EDR detection rules, behavioural analytics, and threat-hunting logic aligned with the MITRE ATT&amp;CK framework.</p> </li> <li> <p>Ensure endpoints across Windows, macOS, and Linux remain up to date with the latest security patches, agent versions, and configuration baselines.</p> </li> <li> <p>Develop and enforce endpoint security policies, OS-hardening standards, and configuration baselines.</p> </li> <li> <p>Create and maintain Agent Installation SOPs for multiple operating systems to support consistent deployment by IT teams.</p> </li> <li> <p>Monitor endpoint posture, identify vulnerabilities, and ensure timely remediation within defined SLAs.</p> </li> <li> <p>Manage and troubleshoot CASB solutions (Zscaler preferred), including policy configuration, performance tuning, and access control.</p> </li> <li> <p>Implement and optimise Data Loss Prevention (DLP) controls on endpoints and within CASB platforms.</p> </li> <li> <p>Apply strong knowledge of data classification, sensitivity labels, and adaptive protection controls to safeguard sensitive data across devices.</p> </li> <li> <p>Manage and maintain email security solutions, anti-phishing controls, and authentication mechanisms such as DMARC, DKIM, and SPF.</p> </li> <li> <p>Define and support email security workflows, triage methodologies, and automated mitigation steps to address email-based threats.</p> </li> <li> <p>Automate operational tasks and workflows using scripting languages (Python, PowerShell, Bash) or Workato automation recipes.</p> </li> <li> <p>Maintain detailed documentation for endpoint security policies, baselines, detections, and troubleshooting procedures.</p> </li> <li> <p>Support internal and external audits (SOC 2, ISO 27001, customer audits) by providing required logs, configurations, and evidence.</p> </li> <li> <p>Stay current with emerging threats, vulnerabilities, and advancements in endpoint, CASB, and EDR security technologies.</p> </li> </ul> <h1><strong>Requirements</strong></h1> <h3><strong>Qualifications / Experience / Technical Skills</strong></h3> <ul> <li> <p><strong>3 to 6 years</strong> of hands-on experience in endpoint security, EDR management, device hardening, or security engineering in cloud-based or SaaS environments.</p> </li> <li> <p>Proven expertise with <strong>EDR platforms</strong>, especially SentinelOne, including rule tuning, policy configuration, and threat detection optimisation.</p> </li> <li> <p>Strong experience with <strong>endpoint hardening</strong> across Windows, macOS, and Linux.</p> </li> <li> <p>Solid understanding of <strong>DLP implementation</strong>, data protection techniques, sensitivity labels, and data classification frameworks.</p> </li> <li> <p>Strong hands-on experience with <strong>CASB solutions</strong>, preferably <strong>Zscaler</strong>, including policy configuration, troubleshooting, performance tuning, and DLP integration.</p> </li> <li> <p>Working knowledge of cybersecurity frameworks, including <strong>MITRE ATT&amp;CK, CIS Benchmarks</strong>, and NIST guidelines.</p> </li> <li> <p>Familiarity with compliance frameworks such as <strong>SOC 2, ISO 27001, and GDPR</strong>.</p> </li> <li> <p>Hands-on experience with scripting/automation using Python, PowerShell, Bash, or Workato automation.</p> </li> <li> <p>Experience with email security technologies and phishing defence mechanisms.</p> </li> <li> <p>Relevant certifications such as&nbsp;<strong>SentinelOne</strong>, <strong>CompTIA Security+</strong>, <strong>CySA+</strong>, <strong>GIAC</strong>, <strong>CCSP</strong>, or other endpoint/cloud security certifications.</p> </li> </ul> <p><strong>Soft Skills / Personal Characteristics</strong></p> <ul> <li> <p>Strong problem-solving and analytical skills with an automation-first mindset.</p> </li> <li> <p>Excellent communication and collaboration skills to work across teams.</p> </li> <li> <p>Ability to work independently and manage multiple tasks effectively in a fast-paced environment</p> </li> </ul> <h4><strong>(REQ ID: 2462)</strong></h4>