Security Engineer, Endpoint and Device Security

Description Who are we? Checkmarx is the AI-powered application security leader helping the world’s most security-conscious enterprises secure the software that powers modern life. For more than two decades, our unified platform and services have helped organizations protect human- and AI-generated code from the first line through runtime, reducing risk across applications, cloud, and the software supply chain without slowing innovation.​ ​We’re trusted by 1,600+ customers in 70+ countries, including some of the largest enterprises and governments in the world. Guided by research-led innovation and a developer-first mindset, we help every developer, security team, and enterprise build software that is risk-free by design. What we are looking for? We are looking for a Junior Security Engineer to join our Security Operations team and own the operational side of our endpoint and device-management stack. The team is responsible for monitoring our environments, responding to alerts, and maintaining a strong security posture across our endpoint estate. This role focuses on keeping our fleet healthy, secure, and compliant: making sure every Mac and Windows device is configured correctly, encrypted, patched, and protected. You will work closely with senior engineers on the team and with IT to manage our MDM platforms, support endpoint security operations, and contribute to compliance and audit efforts. This role offers a strong opportunity to grow professionally in the security field, with direct exposure to endpoint security, incident response, and a modern enterprise security stack. How Will You Make an Impact? • Own our macOS MDM platform: policy configuration, configuration profiles, and app deployment. • Own our Windows MDM platform: configuration policies, compliance policies, and app deployment. • Maintain device compliance baselines: disk encryption, OS patching, screen lock, and password policy. • Drive enrollment programs, zero-touch provisioning, and device lifecycle hygiene. • Investigate and remediate non-compliant devices. • Partner with IT on onboarding and offboarding processes from the endpoint side. • Operate the EDR platform alongside the rest of the team: alert triage, exclusion management, and policy tuning. • Support compliance evidence collection and produce device-posture reports for audits and leadership. • Provide SOC-style support during high-volume periods: alert triage and basic investigations. Requirements What is needed to succeed? • 1–2 years of hands-on experience in IT, IT Security, or sysadmin. • Hands-on experience with at least one MDM platform for macOS or Windows. • Comfort with macOS and Windows administration. • Basic scripting skills in Bash, PowerShell, or Python. • Understanding of endpoint security fundamentals: disk encryption, EDR, patching, and OS hardening. • Exposure to enterprise EDR platforms is a plus. • Familiarity with compliance frameworks such as SOC 2, ISO 27001, or CIS Benchmarks is a plus. • Comfortable working directly with IT, HR, and end users. What we have to offer Checkmarx offers a great work environment, professional development, challenging careers, competitive compensation, great work-life balance, as well as great benefits and perks throughout the year. Checkmarx is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, or other characteristics protected by law.