SIGN IN
Endpoint Cloud Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Charles Schwab · 8 hours ago

Endpoint Cloud Security Engineer

positionUS-AZ-Phoenix
timeFull-time
remoteOnsite
senioritySenior Level
money$155K/yr - $185K/yr
date7+ years exp
Charles Schwab is a leading financial services firm, and they are seeking a highly skilled Senior Endpoint Security Engineer with deep expertise in cloud workload security. In this role, you will serve as a subject matter expert, providing guidance and oversight for endpoint detection and response, while influencing design and ensuring compliance with security standards.
Financial Services
check
H1B Sponsor Likelynote

Responsibilities

Provide expert guidance on EDR strategy, standards, and policy expectations for AWS and GCP workloads
Review and advise on EDR policy changes proposed by engineering teams to ensure alignment with Schwab’s security controls and regulatory requirements
Interpret detection, prevention, and tuning requests and provide recommendations grounded in cloud workload behavior and threat models
Define expectations for cloud unit-level EDR deployment and telemetry coverage across AWS and GCP compute platforms (EC2, GCE, containers, serverless)
Review engineering teams’ implementation plans and identify gaps, risks, or deviations from required controls
Influence platform teams to incorporate endpoint protections into compute and container service baselines
Lead security risk assessments for cloud workloads, architectural changes, and new services
Evaluate risk findings for completeness, severity, and alignment with enterprise standards
Provide risk‑based recommendations and escalate residual risk where appropriate
Conduct architecture and design reviews for AWS and GCP workloads
Validate adherence to security principles, including identity and access models, segmentation, encryption, secrets management, runtime security, and logging
Provide advisory approval or required changes for workloads moving through governance processes
Review platform‑level architectures for services such as EKS, GKE, ECS, Cloud Run, Lambda, and GCE
Recommend improvements to platform controls including image governance, pipeline security, workload identity, configuration hygiene, and runtime telemetry
Serve as a trusted advisor to platform owners for roadmap planning and major design initiatives
Represent the Security Engineering perspective in cloud governance, DevSecOps forums, architecture review boards, and engineering collaboration groups
Advocate for secure architecture decisions while balancing operational requirements and business goals
Communicate complex security considerations to technical and non‑technical stakeholders with clarity and influence

Qualification

Cloud workload securityEndpoint detectionResponseAWSGCP expertiseCloud-native security toolsAutomationScriptingDevSecOps practicesCybersecurity certificationsCloud servicesCommunication skills

Required

Bachelor's degree in computer science or a related field
7+ years of progressive cybersecurity engineering experience
Minimum 3 years of experience advising or engineering endpoint security controls in public cloud environments (AWS or GCP required)
At least 3 years of technical experience with AWS, Azure, or GCP cloud services
Experience with cloud‑native security tools such as Wiz, Prisma, or Zscaler
Proficiency in at least one automation or scripting language (Python, Bash, PowerShell, Golang)
Familiarity with DevSecOps practices, CI/CD tooling, and infrastructure-as-code concepts (Terraform, Ansible, Salt, etc.)
Strong understanding of cloud architecture patterns, workload risk drivers, and security control design
Experience supporting or advising on security in a highly regulated industry, ideally financial services
Experience with mission‑critical, 24x7 environments

Preferred

Relevant cybersecurity certifications such as CISSP, CCSP, CCSK, or cloud provider security certifications
Understanding of cloud provider services across compute, storage, database, AI/ML, and middleware
Demonstrated ability to stay current with emerging threats, vulnerabilities, and cloud security technologies
Excellent communication skills with the ability to articulate complex technical concepts to engineers and leadership

Company

Charles Schwab

twittertwittertwitter
Glassdoor3.8
company-logo
We have plans for every turn you take.
dateFounded in 1973
location
San Francisco, California, USA
people-size10001+ employees
web-link
https://www.schwab.com/

H1B Sponsorship

Charles Schwab has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (579)
2024 (468)
2023 (455)
2022 (705)
2021 (483)
2020 (282)

Funding

Current Stage
Late Stage

Leadership Team

J
Jim McGreevy
Senior Project Manager
linkedin

Recent News

PR Newswire
TIAA to Deliver An Estimated $38 Million in Annual Savings to Account Owners participating in the Kansas 529 Program
2026-01-22
Benzinga.com
Stock Market Today: Nasdaq, S&P 500 Futures Rise—Salesforce, Hewlett-Packard Enterprise, Charles Schwab In Focus
2025-10-16
FinanceFeeds
Inside Goldman Sachs’ Crypto Currency Plans and Trading Desk
2025-10-04
Company data provided by crunchbase