IT Endpoint Security Lead

In short

In the dynamic landscape of On, the tech thrives much like a spirited runner: always moving, always improving. We are building technology that continues to supercharge the growth of On, helping to ignite the human spirit through movement.

The Endpoint Security Lead will be responsible for designing, implementing, and managing advanced endpoint security strategies to protect enterprise devices and users. You will ensure continuous compliance with internal security policies and regulatory requirements while leveraging JAMF, Intune, and MacOS security technologies to enforce security controls across all endpoints.

This role requires deep technical expertise in endpoint security solutions, strong leadership in defining security posture for diverse device environments (macOS, Windows, mobile), and the ability to drive automation, integration, and proactive threat mitigation across the organization.

Your Mission

• Endpoint Security Strategy & Architecture
• Design and implement advanced endpoint security strategies to safeguard corporate devices, ensuring resilience against modern threats.
• Define and enforce Zero Trust-based endpoint security architectures, implementing least privilege models and adaptive security controls for enterprise endpoints.
• Develop and maintain endpoint security policies, standards, and guidelines aligned with industry best practices (CIS, NIST, ISO 27001).
• Endpoint Security Technology Implementation & Management
• Oversee JAMF Pro and Microsoft Intune for MacOS and Windows endpoint security management, ensuring policy enforcement, patching, and compliance monitoring.
• Deploy and manage endpoint protection solutions (EDR, XDR, AV) and ensure continuous threat visibility and mitigation.
• Develop and enforce endpoint hardening standards and security baseline configurations across macOS, Windows, and mobile devices, incorporating CIS benchmarks, least privilege access models, and advanced threat protection.
• Automate security policy enforcement and device compliance workflows to reduce risk exposure and improve efficiency.
• Ensure seamless integration of endpoint security tools with SIEM, SOAR, and identity platforms (e.g., Okta, Azure AD) for comprehensive security operations.
• Leverage APIs and scripting (e.g., Python, PowerShell) to automate security tasks and enhance endpoint security operations.
• Threat Detection, Incident Response & Automation
• Work closely with SOC and Threat Management teams to enhance endpoint detection, response, and remediation capabilities.
• Develop and optimize custom detection rules and endpoint logging strategies to improve visibility and threat identification.
• Automate incident response workflows, integrating endpoint security tools with SIEM/SOAR platforms to accelerate threat containment and mitigation.
• Lead endpoint-related security investigations, ensuring rapid containment and recovery from security incidents.
• Training and Mentoring: Providing training and mentoring to team members, fostering a culture of learning and knowledge sharing within the organisation.