Job Description

Cybersecurity Endpoint Engineer

Hybrid/Remote Denver

$129000K-$132000K Range

Why Choose GMR? Global Medical Response (GMR) and its family of solutions are dedicated to delivering compassionate, quality medical care, primarily in the areas of emergency and patient relocation services. Here you'll embark in meaningful work that will make an impact on you and the customers we service. View our employee's stories on how we provide care to the world at

JOB SUMMARY

The Cybersecurity Endpoint Engineer plays a critical role in developing and managing GMR's Endpoint Protection Program, ensuring endpoints are protected against evolving threats through technical implementation and continuous improvement of endpoint tooling, system hardening, and data loss prevention (DLP) capabilities. This individual will serve as a hands-on engineer responsible for administering endpoint protection, and leading endpoint and server hardening efforts aligned with NIST 800-53 and 800-171 controls.

The position reports to the Manager of Architecture & Engineering and collaborates closely with the SOC, Compliance, Infrastructure, and Desktop Support teams.

ESSENTIAL FUNCTIONS/DUTIES

• Administer and optimize endpoint protection using CrowdStrike Falcon across enterprise workstations and servers.
• Support Microsoft Defender for Endpoint and related Microsoft security tools.
• Build and manage the Endpoint Protection Program, including policies, governance, enforcement, and reporting.
• Lead the development and maintenance of secure system and server baselines, aligned with CIS Benchmarks and NIST standards (800-53, 800-171).
• Develop and enforce endpoint-based DLP controls, including USB restrictions and sensitive file transfer monitoring, leveraging CrowdStrike and Microsoft tooling.
• Collaborate with the SOC to ensure efficient incident response workflows related to endpoint alerts and containment.
• Partner with infrastructure and desktop teams to integrate endpoint security tooling and hardening into image builds, deployment, and patching.
• Maintain documentation for configurations, baselines, standard operating procedures (SOPs), and endpoint protection policies.
• Contribute to audit readiness, cyber maturity assessments, and risk register items tied to endpoint controls.
• Develop and track KPIs and metrics related to endpoint coverage, compliance, and DLP activity.
• Stay current with emerging threats, vulnerabilities, and technologies to continuously improve endpoint defenses.

QUALIFICATIONS

Education/Licensing/Certification

• Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent experience.
• Preferred certifications: CrowdStrike CCFA/CCSA, Microsoft SC-200, Security+, GSEC, or CISSP.

Experience

• 3-5 years of experience in a cybersecurity, endpoint, or systems security engineering role.
• Direct experience administering and managing CrowdStrike Falcon in an enterprise environment.
• Experience with Microsoft Defender for Endpoint and Microsoft Security Center platforms.
• Strong background in implementing system and server hardening based on NIST and CIS standards.
• Experience tuning and managing DLP policies at the endpoint level.
• Familiarity with compliance frameworks such as NIST 800-53, NIST 800-171, HIPAA, or PCI DSS.

Preferred Background

• Applicants with prior military service - especially those with cybersecurity or IT backgrounds - are encouraged to apply and bring mission-driven focus to our team.
• Experience supporting healthcare, emergency services, or other regulated environments is a plus.

Knowledge and Skills

• Advanced endpoint protection experience such as Cybereason, CrowdStrike or other similar products.
• Requires excellent analytical ability, consultative skills, strong judgment and the ability to work effectively in a cross-functional, multi-disciplinary, team environment.
• Ability to adjust to changing priorities while multitasking effectively.
• An analytical demeanor and the ability to effectively communicate with individuals across all levels of the organization.
• Requires strong verbal and written communication skills to effectively communicate across various levels with the ability to influence others is critical to success.
• Proven ability to understand and develop expertise on new technologies quickly.
• Must be well organized with excellent follow up skills to meet deadlines, coordinates work of others while fostering team work and cooperation; handling multiple concurrent tasks.
• Understanding of security controls in Cloud and Onprem environment.
• A proven leadership abilities to interface across the organization with other teams, such as Engineering and Security, Application Teams, Internal Audit, etc.
• Proficient in endpoint security controls, telemetry, and threat detection.
• Working knowledge of secure configuration management and endpoint hardening frameworks.
• Strong cross-functional communication skills; able to work across IT, compliance, and security teams.
• Excellent technical documentation and procedural writing skills.
• Ability to manage multiple priorities and respond quickly in dynamic environments.
• Working knowledge of compliance frameworks and security management standards (e.g., NIST 800-53, NIST CSF, ISO 27002, COBIT, PCI DSS, HIPAA)

To learn more about GMR and how our values are at the core of our services and vital to how we approach care, visit

Global Medical Response and its family of companies are an Equal Opportunity Employer, which includes supporting veterans and providing reasonable accommodations for individuals with a disability.

• Salary Range $128,000-$132,000 Range
• Check out our careers site Benefits | GMR Careers to learn more about our comprehensive benefit options, which include medical, vision, dental, 401k, disability, FSA, HSA, EAP, vacation and paid time off.
• The application window for this position is anticipated to close on 1.10.2025

Job Tags

Similar Jobs