Endpoint DevSecOps Senior Engineer

Your opportunity

At Schwab, you are empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us challenge the status quo and transform the finance industry together.

The Senior Endpoint Security DevSecOps Engineer is an individual contributor within Schwab Cybersecurity Services, responsible for engineering, automating, and scaling endpoint security platform operations across the enterprise. This role focuses on transforming repeatable endpoint security operations, integrations, and governance obligations into durable, code‑driven systems that improve reliability, reduce operational risk, and scale with the firm.

This role will partner closely with the application security, CI/CD pipeline security, and cloud service security teams to integrate solutions or provide shared visibility as needed.

What You’re Good At

Endpoint Security Automation at Scale

• Engineering and automating enterprise endpoint security capabilities, including EDR, XDR, and AI.
• Developing repeatable rollout patterns for new endpoint security features, including monitor‑only, pilot, and enforcement phases.
• Identifying and automating repetitive operational tasks to reduce manual effort and improve consistency across large endpoint fleets.

Security Platform Integrations & Operational Workflows

• Architecting, implementing, and sustaining integrations between endpoint security platforms and enterprise systems (e.g., incident management, reporting, and inventory systems).
• Developing reliable, observable workflows that route, enrich, and manage security events with minimal manual intervention.

Resiliency & Governance Evidence Automation

• Providing continuous, system-generated compliance, audit, and resiliency evidence for monitored endpoint security systems.
• Automating the generation of governance‑ready artifacts required for regulatory reviews, resiliency assessments, and internal architecture or risk forums.
• Maintaining current‑state documentation and evidence that accurately reflects live platform configurations and controls.

Operational Reporting

• Developing and reporting enterprise‑level metrics for endpoint security controls.
• Creating dashboards, reports, and data views that provide authoritative insight into:
  • Operational readiness and risk posture
  • Trends relevant to leadership and governance audiences
• Ensuring reporting is sourced from automated, repeatable systems rather than manual or ad‑hoc processes.
• Partnering with stakeholders to ensure reporting aligns with regulatory, compliance, and operational expectations.

What you have

What You’ll Have

• A proven track record administering and engineering enterprise security solutions.
• Strong experience with endpoint security technologies such as EDR, DLP, identity protection, AI detection and response, AI security operations center, and data protection.
• Experience using Python, GO, PowerShell, JavaScript, BASH, REST API, and Git to automate security operations and integrations.
• Understanding of operating system fundamentals and how applications interact with the OS.
• Familiarity with networking concepts such as firewalls and IP networking.
• Experience developing dashboards, reports, rules, and metrics for security platforms.
• Ability to document, publish, and maintain operational knowledge for supported tools and processes.

Qualifications

• 3–5 years of progressive experience in cybersecurity engineering across multiple security domains.
• At least 3 years of DevSecOps experience focused on endpoint security engineering in enterprise environments.
• Experience supporting security controls subject to audit and regulatory oversight.
• Bachelor's degree in computer science, engineering, or related field.

Preferred

• Experience with CrowdStrike or comparable endpoint detection and response platforms.
• Industry certifications such as CISSP, CISM, or equivalent.