McCormick & Company
Website:
mccormickcorporation.com
Job details:
McCormick & Company, Inc., a world leader in the spice, flavor and seasonings industry, is seeking a full time Endpoint Security Engineer– Technology and Engineering. This position will report to the Sr. Manager Cybersecurity - Technology and Engineering.
Position Overview:
The Endpoint Security Engineer will be a member of a global team of security engineers, architects, and practitioners enabling secure business growth and resilient access to information, data, and services from anywhere in the world. This role focuses on endpoint security across enterprise IT, OT, and cloud environments, ensuring security controls are designed, implemented, and operated in alignment with McCormick’s cybersecurity strategy and risk framework.
The role requires strong technical expertise in endpoint security platforms, operating system hardening, configuration lifecycle management, automation, and compliance integration. The Endpoint Security Engineer will lead and support enterprise-scale engineering initiatives, continuously enhance endpoint security capabilities, and collaborate closely with IT, Compliance, Legal, and business stakeholders to reduce enterprise risk while enabling operational efficiency. This is an individual contributor role with global impact.
Key Responsibilities:
- Contribute to the development and execution of the security and engineering practice strategy and roadmap.
- Design, implement, operate, and continuously enhance enterprise endpoint security platforms including EDR/XDR, antivirus, encryption, device control, vulnerability management agents, patching, and posture management solutions across Windows (and Linux where applicable) environments.
- Performs endpoint health checks and security technologies (antivirus/EDR, proxy) coverage validation.
- Lead endpoint configuration lifecycle management, OS hardening, secure baseline enforcement, and alignment to enterprise architecture and technical standards, ensuring scalable and resilient endpoint security practices.
- Drive large-scale endpoint security engineering initiatives across IT, OT, and cloud environments, including automation of operational tasks and compliance validation using scripting (e.g., PowerShell, Python), while contributing to tooling roadmaps, lifecycle planning, and continuous improvement efforts.
- Integrate cybersecurity frameworks (e.g., NIST CSF, CIS Benchmarks, ISO 27001) into endpoint engineering workflows, support audit readiness activities, develop compliance reporting and KPIs, and partner with Legal and Compliance teams to strengthen control effectiveness.
- Collaborate across globally distributed IT, security, and business teams to translate technical requirements into business-relevant solutions, mentor engineers, contribute to documentation and knowledge sharing, and drive consistent risk reduction aligned to enterprise priorities.
- Supports secure mobile and remote workforce enablement.
- Maintains SOPs for patching, agent rollouts, and baseline checks.
- Supports on-call needs related to endpoint protection platforms.
- Implement process metrics for deployment and compliance tracking.
- Engages in peer reviews and team playbooks updates.
Preferred Qualifications:
- Associate’s or Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or related field. Equivalent combination of education and relevant experience may be considered.
- Two or More of: GIAC Certified, CCSK, OCSP, CISSP (Certified Information Systems Security Professional), Cloud Certified (AWS (Amazon Web Services), GCP, Azure), CEH, ITIL, RHCE, Microsoft Certification, Security+, or other related security certification
- 3–6 years of experience in endpoint/cloud security, systems administration, or security engineering Broad and in-depth knowledge of cyber security technologies
- Strong experience deploying and managing endpoint security technologies including EDR, antivirus, encryption, patching, vulnerability agents, and posture management solutions
- Experience working in a 24x7 global enterprise environment would be considered an asset.
- Proficiency in secure baseline configuration and security architecture design
- Hands-on experience with core endpoint/cloud security tools and platforms
- Knowledge of control frameworks such as NIST CSF, CIS, ISO 27001
- Proficiency in scripting (e.g., PowerShell, Python) and automation tools
- Proven ability to drive security processes, remediation, and standards within a complex business environment while maintaining continuity of business operations.
- Comprehensive technical knowledge of all areas within IT plus a comprehensive understanding of all business functions and how their processes and resources interact is required.
Other skills and competencies:
- Must be able to multi-task and set priorities
- Must have experience leading and working in a collaborative, multi-disciplined, globally diverse team environment.
- Effective communication skills and the ability to communicate appropriately at all levels of the organization; this includes written and verbal communications as well as visualizations
- Strong consultative skills
- Positive approach to customer service with demonstrated ability to handle high pressure support needs in a calm, respectful, and efficient manner
- Must be able to provide sound, convincing arguments based on qualitative data.
- Conflict resolution skills.
- Attention to detail and follow through.
- Demonstrated ability to manage both technical and business relationships and liaise on the information needs of the business to IT and system constraints back to the business.
- Ability to maintain confidential and personal information.
- Demonstrated leader of continuous improvement ideas and implementations
- Ability to operate a multi-cultural and multi-lingual environment both with team members and internal customers (critical)
- Ability to discuss technical information with non-technical individuals across multiple cultures in multiple countries. (critical)
- English fluency (critical)
Click on Apply to know more.