[Remote] Security Engineer (Hardening, Active Directory & Endpoint Security)
Note: The job is a remote job and is open to candidates in USA. The Dignify Solutions, LLC is seeking an experienced Security Engineer with expertise in system hardening, Active Directory security, and endpoint security. The role involves reviewing, implementing, and maintaining security baselines while ensuring compliance with CIS Benchmarks and managing AD security policies across the enterprise environment.ResponsibilitiesImplement and maintain server and workstation hardening standards based on CIS Benchmarks and industry best practicesPerform security assessments, gap analysis, and remediation activities for Windows and Linux environmentsDesign, configure, and manage Active Directory Group Policies (GPOs) to enforce security controls and compliance requirementsDevelop and maintain security baselines for servers, databases, and virtual environmentsConfigure and manage endpoint security solutions, including antivirus, EDR/XDR, application control, device control, and encryption technologiesMonitor endpoint security posture and remediate vulnerabilities identified through security scans and auditsCollaborate with infrastructure and application teams to implement security controls without impacting business operationsConduct security reviews of AD configurations, privileged accounts, service accounts, and authentication mechanismsSupport vulnerability management activities, including risk assessment, remediation tracking, and compliance reportingCreate and maintain security documentation, hardening standards, and operational proceduresParticipate in incident response activities related to endpoint and infrastructure securitySkillsStrong experience in Windows Server and Active Directory AdministrationHands-on experience implementing CIS Benchmarks for Windows, Linux, and endpoint systemsExpertise in Group Policy Objects (GPOs), security templates, and AD security best practicesExperience with endpoint security platforms such as Microsoft Defender for Endpoint, CrowdStrike, Sentinel One, Trellix, or Symantec Endpoint SecurityStrong understanding of security controls including: Privileged Access Management (PAM), Multi-Factor Authentication (MFA), Endpoint Encryption, Application Whitelisting, Device ControlExperience with one of the vulnerability management tools such as Tenable, Qualys, or Rapid7Knowledge of security frameworks and standards including CIS, NIST, and ISO 27001Scripting experience using PowerShell for automation and security policy deploymentBachelor's degree in computer science, Information Security, or related fieldSecurity certifications such as: CISSP, Security+, Microsoft Security Certifications, GIAC Certifications, CIS Benchmark-related certificationsExperience in enterprise-scale security operations and compliance environmentsCompany OverviewThe Dignify Solutions with Global Capabilities and Local Excellence – has combined experience of 30 +years in Client Services/ Engagement/ Relationship/ Partnership, Sales/ Account Management, Service Delivery, Recruiting, Staffing and Talent Acquisition for the whole gamut of skillsets in Information Technology (Digital Transformation, Artificial Intelligence, Machine Learning and other business domains). It was founded in undefined, and is headquartered in San Francisco, California, USA, with a workforce of 51-200 employees. Its website is https://thedignify.com.