Windows Security Engineer ...

A Career with Point72’s Global Information SecurityTeam Our Global Information Security team’s mission is to ensurethe development, implementation, and management of a comprehensiveprogram that effectively protects the confidentiality, integrity,and availability of Point72 information assets. Our team iscomprised of security professionals with expertise in a diverseportfolio of security disciplines. What you’ll do - Design andimplement secure Windows Server and Active Directory architecturesat scale - Architect and maintain hybrid identity solutionsintegrating on-premise AD with EntraID (Azure AD) and Okta -Configure and manage AD delegation models following least privilegeprinciples - Implement and maintain identity protection solutions(eg: Defender for Identity, CrowdStrike Identity Protection, QuestActive Roles, etc) - Develop and enforce security standards forWindows Server deployments, including bare metal, VMware and publiccloud (AWS, Azure, GCP) - Collaborate with Endpoint Engineeringteams to secure Windows endpoints using solutions including SCCMand InTune - Configuration management for Windows Firewall and ASRrules across our endpoint estate - Help to monitor and mature ourWindows patching and vulnerability management program Windows -Perform security assessments and audits of Windows infrastructure -Monitor and respond to security incidents related to Windowsinfrastructure - Collaborate with infrastructure and security teamson identity and access management initiatives What’s required -Bachelor's degree in Computer Science, Information Security, orrelated field - 7+ years of experience in Windows Serveradministration and security with deep expertise in ActiveDirectory, Group Policy, AzureAD/EntraID, ADFS, DFS, SMB/CIFS, IIS,SQL Server, Kerberos, LDAP, NTLM, DNS, WMI, LAPS, Bitlocker andrelated Microsoft Server technologies - Experience with all commonversions of Windows Server (2012, 2016, 2019, 2022 & 2025) andWindows 10-11 desktop OS - Strong general knowledge of coreinfrastructure (Networking, storage, virtualization/VMware, etc) -Advanced knowledge of AD delegation models and associated bestpractices - Experience with identity protection platforms (Defenderfor Identity, CrowdStrike Identity Protection, etc.) - Proficiencynavigating and triaging Windows event logs - Familiarity withCentrify as means of integrating Linux with Active Directory -Familiarity with Quest Active Directory security products (eg:Active Roles) - Proficiency with PowerShell required We take careof our people - We invest in our people, their careers, theirhealth, and their well-being. When you work here, we provide: -Fully-paid health care benefits - Generous parental and familyleave policies - Volunteer opportunities - Support for employee-ledaffinity groups representing women, people of color and the LGBT+community - Mental and physical wellness programs - Tuitionassistance - A 401(k) savings program with an employer match andmore About Point72 Point72 Asset Management is a global firm led bySteven Cohen that invests in multiple asset classes and strategiesworldwide. Resting on more than a quarter-century of investingexperience, we seek to be the industry’s premier asset managerthrough delivering superior risk-adjusted returns, adhering to thehighest ethical standards, and offering the greatest opportunitiesto the industry’s brightest talent. We’re inventing the future offinance by revolutionizing how we develop our people and how we usedata to shape our thinking. For more information, visitwww.Point72.com/working-here. #J-18808-Ljbffr