Endpoint Privilege Management (EPM) Engineer

Endpoint Privilege Management (EPM) Engineer Description - Role Overview The Cybersecurity Engineer – Endpoint Privilege Management (EPM) is a senior technical expert responsible for defining, implementing, and governing BeyondTrust Endpoint Privilege Management (EPM) policies across all HP-managed Windows endpoints and VDI environments . This role serves as a deep technical authority for endpoint privilege control, ensuring alignment with HP cybersecurity standards, regulatory requirements, and enterprise risk management objectives, while partnering closely with Endpoint Engineering, IAM/IGA, Managed Device Services, and IT Support teams. Key Responsibilities Technical Expertise & Policy Ownership Serve as the EPM subject matter expert for BeyondTrust EPM within HP. Define, implement, and maintain enterprise EPM security policies , including privilege elevation, software installation control, and exception handling. Translate cybersecurity standards and risk requirements into enforceable EPM policies. Engineering & Operations Design, test, deploy, and maintain EPM policies. Analyze and resolve complex EPM issues related to policy behavior, agent functionality, and application compatibility. Partner with Intune and Managed Device Services teams to support agent deployment, upgrades, and phased rollouts. Establish and maintain operational procedures for EPM policy lifecycle management. Collaboration & Enablement Work closely with IGA/IAM teams to align endpoint privilege controls with identity and access governance. Support Service Desk and Tech Café teams by defining escalation paths and policy-driven resolution approaches. Advise application and business teams on secure onboarding of new EPM use cases. Required Qualifications 8+ years of experience in cybersecurity, endpoint security, or Windows platform security. Hands-on experience with BeyondTrust Endpoint Privilege Management (EPM) in a large enterprise environment. Strong expertise in Windows security , including: Privilege elevation and access control Local and domain security policies Group Policy and endpoint hardening Experience implementing least privilege and software installation controls at scale. Strong problem-solving, documentation, and stakeholder communication skills. Key Competencies Endpoint Privilege Management (EPM) Windows Endpoint Security Cybersecurity Policy Engineering Privileged Access Governance Risk & Compliance Alignment Cross-team Technical Collaboration Impact & Scope Shapes how privileged access is controlled across all HP-managed endpoints . Reduces endpoint-based security risk while enabling business productivity. Acts as a go-to expert for EPM within HP Cybersecurity and infrastructure teams. Job - Data & Information Technology Schedule - Full time Shift - No shift premium (India) Travel - Relocation - Equal Opportunity Employer (EEO) -  HP, Inc. provides equal employment opportunity to all employees and prospective employees, without regard to race, color, religion, sex, national origin, ancestry, citizenship, sexual orientation, age, disability, or status as a protected veteran, marital status, familial status, physical or mental disability, medical condition, pregnancy, genetic predisposition or carrier status, uniformed service status, political affiliation or any other characteristic protected by applicable national, federal, state, and local law(s). Please be assured that you will not be subject to any adverse treatment if you choose to disclose the information requested. This information is provided voluntarily. The information obtained will be kept in strict confidence. For more information, review HP’s   EEO Policy or read about your rights as an applicant under the law here: “ Know Your Rights: Workplace Discrimination is Illegal "