EndPoint Security Subject Matter Expert

Job Description:

DXC Technology - where brilliant people embrace change and seize opportunities to advance their careers and amplify customer success. People are the heart of our business. We support each other and work as a team, globally and locally to deliver excellence for our customers and colleagues. We live in more than 70 countries, speak multiple languages and work with over 6,000 customers on almost every continent. We use the power of technology to deliver mission critical IT services that move the world. DXC.com At DXC we pride ourselves on delivering excellence in everything we do. What this means for you is the opportunity to be a part of delivering innovative solutions and helping to solve real business problems for a wide variety of valued clients.

EndPoint Security Subject Matter Expert

We are seeking a highly skilled Endpoint Security Subject Matter Expert (SME) to enhance and maintain enterprise‑grade endpoint protection, endpoint governance, and secure‑access controls.

Your core responsibilities will focus on Microsoft Defender (XDR & Cloud), application control solutions, Microsoft endpoint ecosystems, and endpoint compliance, with additional exposure to OT visibility as a desirable skill.

This role is ideal for someone who enjoys owning endpoint‑security domains, implementing modern device‑security controls, and working closely with customers to improve their resilience against advanced threats.

Job Description:

• Lead deployment, configuration, and optimization of Microsoft Defender XDR, ensuring strong endpoint protection, threat detection, device hardening, and integration across the Microsoft security ecosystem.
• Administer and maintain Microsoft Defender for Cloud, including security recommendations, posture management, and hybrid/cloud workload protection.
• Manage and maintain ThreatLocker or other application‑control platforms, including allowlisting, policy enforcement, ringfencing, and operational troubleshooting.
• Implement and optimize endpoint governance using Microsoft Intune, including configuration profiles, compliance policies, security baselines, and device‑lifecycle management.
• Support directory, identity, and device policy integration using Entra ID (Azure AD), ensuring secure authentication, conditional access, and identity‑driven device posture.
• Apply and tune Group Policy Objects (GPO) and MECM (Microsoft Endpoint Configuration Manager) for on‑premises and hybrid Windows endpoint management.
• Support and maintain Microsoft Purview solutions, including Information Protection, DLP, Insider Risk, and Data Governance; to strengthen endpoint‑level data protection.
• Assist in basic integration and monitoring of Nozomi OT or other OT/ICS endpoint‑visibility tools to expand security coverage beyond IT environments.
• Monitor endpoint‑related alerts, investigate incidents, and collaborate with SOC, Cloud, and Infrastructure teams to drive remediation activities.
• Conduct endpoint‑level troubleshooting using built‑in Microsoft tools, event logs, and device‑health telemetry to resolve issues around policy enforcement, protection status, or application behavior.
• Document endpoint configurations, baselines, and policy changes, and support operational handover after deployment or major updates.

Job Level required: EndPoint Security Subject Matter Expert

• Apply deep subject‑matter expertise across endpoint protection, application control, and Microsoft‑based endpoint governance
• Work independently on moderately complex to advanced endpoint‑security initiatives.
• Collaborate closely with SOC, Cloud Security, Identity, and Infrastructure teams to ensure consistent endpoint security posture.
• Contribute to documentation, process improvements, and knowledge‑sharing.
• Act as an escalation point for endpoint‑security issues and policy conflicts.

Technical Skills and Experience Required:

Essential Requirement:

3–5 years of experience in endpoint security, Microsoft endpoint platforms, or XDR security operations. Strong understanding of endpoint protection, application control, device configuration, identity‑driven access, and data‑protection fundamentals.

Required Technology Implementation Experience
(Experience in a minimum of 3-4 of the following is required)

Must Have:

• Microsoft Defender XDR
• Microsoft Defender for Cloud
• ThreatLocker (or equivalent application control / allowlisting platform)
• Microsoft Intune
• Group Policy Objects (GPO)
• MECM (Microsoft Endpoint Configuration Manager)
• Entra ID (Azure AD)
• Microsoft Purview (Information Protection, DLP, Insider Risk, Data Governance)

Added Advantage:

• Nozomi OT or other OT/ICS endpoint visibility tools
• Basic scripting (PowerShell) for policy validation or automation

Preferred Industry Background:
Experience in the Finance, Banking, or Insurance sectors is highly desirable. Prior exposure to production support and interaction with business users is an added advantage.

Learn more about DXC and what we do: DXC offerings

LinkedIn: https://www.linkedin.com/company/dxctechnology

Instagram: https://www.instagram.com/dxctechnology

Youtube: https://www.youtube.com/DXCTechnology

TikTok: https://www.tiktok.com/@dxc_technology

Website http://www.dxc.com

At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.