Technology is our how. And people are our why. For over two decades, we have been harnessing technology to drive meaningful change.By combining world-class engineering, industry expertise and a people-centric mindset, we consult and partner with leading brands from various industries to create dynamic platforms and intelligent digital experiences that drive innovation and transform businesses.From prototype to real-world impact - be part of a global shift by doing work that matters.
Job Description
Endava is seeking an experienced Device Security Engineer to support the design, governance, and continuous improvement of enterprise device security controls across endpoints, mobile devices, servers, and emerging device platforms.
This hands‑on role is responsible for defining secure device architecture standards, engineering device hardening baselines, and ensuring protective security controls are effectively implemented across managed devices. The Device Security Engineer will work closely with Infrastructure, Cloud, End User Computing, and Security Operations teams to strengthen endpoint protection, device compliance, and operational security across enterprise environments.
The role also contributes to broader cyber security initiatives such as Zero Trust device posture, privileged access governance, device identity enforcement, and integration of endpoint telemetry into security monitoring and incident response processes.
Responsibilities:
Define and maintain device security standards, policies, and architectural patterns for endpoints, servers, and mobile devices.
Develop and govern device hardening baselines and configuration standards aligned with enterprise security policies and compliance frameworks.
Improve device compliance posture by implementing consistent security policies, reporting, and remediation processes.
Partner with Infrastructure and End User Computing teams to manage device lifecycle security including provisioning, patching, compliance enforcement, and decommissioning.
Engineer and maintain device protection platforms such as EDR, antivirus, and device management solutions.
Ensure device protection controls are configured correctly and provide effective coverage across the enterprise environment.
Define and enforce device identity and access security requirements, including conditional access readiness, device compliance policies, and privileged access controls.
Support remediation of device security risks, high‑risk configurations, and compliance gaps based on business impact and threat intelligence.
Act as a device security subject matter expert during cyber incidents involving endpoints or managed devices.
Maintain device security documentation including baseline builds, configuration standards, and secure device deployment patterns.
Collaborate with SOC and Cyber Defence teams to ensure endpoint telemetry supports effective monitoring, detection, and response workflows.
Support automation and continuous improvement initiatives for device compliance enforcement, configuration management, and reporting.
Qualifications
Experience:
8–10+ years of experience in IT infrastructure or cybersecurity, with at least 5 years in endpoint or device security engineering roles.
Hands‑on experience implementing and managing enterprise device security controls and endpoint protection platforms.
Experience with endpoint and mobile device management technologies such as Microsoft Intune, JAMF, Tanium, or equivalent platforms.
Experience with endpoint security platforms such as CrowdStrike or Microsoft Defender for Endpoint.
Proven experience collaborating with infrastructure, cloud, and endpoint operations teams to manage device security controls and compliance.
Experience working with managed service providers or outsourced operations models for security tooling management.
Experience supporting incident response, device remediation activities, and security investigations involving endpoints.
Relevant security certifications such as CISSP, endpoint security certifications, or vendor‑specific certifications are desirable.
Technical Skills:
Strong knowledge of endpoint and device security architecture including:
Device hardening and secure configuration management
Endpoint protection and EDR technologies
Device compliance enforcement and policy management
Endpoint encryption and secure storage controls
Hands‑on experience with enterprise device security tooling including:
Microsoft Intune / Endpoint Manager
JAMF
Tanium
CrowdStrike
Microsoft Defender security suite
Understanding of device identity and access security including conditional access, device compliance gates, and privileged access controls.
Experience integrating endpoint telemetry into security monitoring platforms such as SIEM or XDR.
Strong troubleshooting and problem‑solving skills related to endpoint security controls and device management platforms.
Understanding of modern endpoint attack techniques including ransomware, lateral movement, and credential theft.
Familiarity with Zero Trust security principles and secure device posture models.
Additional Information
Discover some of the global benefits that empower our people to become the best version of themselves:
Finance: Competitive salary package, share plan, company performance bonuses, value‑based recognition awards, referral bonus;
Career Development: Career coaching, global career opportunities, non‑linear career paths, internal development programmes for management and technical leadership;
Learning Opportunities: Complex projects, rotations, internal tech communities, training, certifications, coaching, online learning platforms subscriptions, pass‑it‑on sessions, workshops, conferences;
Work‑Life Balance: Hybrid work and flexible working hours, employee assistance programme;
Health: Global internal wellbeing programme, access to wellbeing apps;
Community: Global internal tech communities, hobby clubs and interest groups, inclusion and diversity programmes, events and celebrations.
At Endava, we’re committed to creating an open, inclusive, and respectful environment where everyone feels safe, valued, and empowered to be their best. We welcome applications from people of all backgrounds, experiences, and perspectives—because we know that inclusive teams help us deliver smarter, more innovative solutions for our customers. Hiring decisions are based on merit, skills, qualifications, and potential. If you need adjustments or support during the recruitment process, please let us know.
#J-18808-Ljbffr