At BlackRock, we are all connected by one mission: to help more and more people experience financial well-being. Our clients, and the people they serve, are saving for retirement, paying for their children's educations, buying homes and starting businesses. Their investments also help to strengthen the global economy: support businesses small and large; finance infrastructure projects that connect and power cities; and facilitate innovations that drive progress.

This mission would not be possible without our smartest investment – the one we make in our employees. It's why we're dedicated to creating an environment where our colleagues feel welcomed, valued and supported with networks, benefits and development opportunities to help them thrive.

Overview

Join our distributed team of cyber security experts, protecting our business and developing exciting capabilities on the frontline of cyber defense. Apply your passion and knowledge of cyber security to assist in the protection of corporate information. This individual will be part of the Cyber Data Protection Engineering team that is responsible for maintaining the tools and systems used to prevent and detect data compromise or loss. This individual will work closely with other members of the Information Security team and partners across the enterprise to ensure the successful delivery of the Data Loss Prevention (DLP) program.

The Data Protection Engineering Associate is responsible for designing, implementing, and maintaining DLP rules, policies and workflows across various tools. They will partner with stakeholders to define DLP strategy and ensure alignment with business objectives and compliance requirements. The associate will troubleshoot system issues as well as keep systems up-to-date with patches and upgrades.

BlackRock is committed to building great Cyber Security careers for our people, and we are looking for an individual with a passion for cyber security defense to continue the growth of our exceptional team.

What the ideal candidate looks like:

4–5 years of experience as a DLP Engineer, Security Engineer, or related role.

Hands-on experience with DLP technologies:

Strong background in DLP rules development and policy configuration.

Experience executing on a data protection strategy in a large or regulated enterprise

University Degree. MBA, CISSP, CISM, GCHI, CEH, CCNA, GIAC, or other Cybersecurity certification is a plus.

Basic knowledge of DLP/UBA concepts.

Attention to detail.

Ability to exercise sound technical, interpersonal and organizational judgment while evaluating and solving complex problems.

Strong oral and written communication skills including the ability to interact directly with individuals that do not have an IT background.

Action-oriented attitude and willingness to roll up sleeves.

Integrity and the highest ethical standards.

Courage of convictions and the ability to respectfully debate the status quo.

Our benefits

To help you stay energized, engaged and inspired, we offer a wide range of employee benefits including: retirement investment and tools designed to help you in building a sound financial future; access to education reimbursement; comprehensive resources to support your physical health and emotional well-being; family support programs; and Flexible Time Off (FTO) so you can relax, recharge and be there for the people you care about.

Our hybrid work model

BlackRock's hybrid work model is designed to enable a culture of collaboration and apprenticeship that enriches the experience of our employees, while supporting flexibility for all. Employees are currently required to work at least 4 days in the office per week, with the flexibility to work from home 1 day a week. Some business groups may require more time in the office due to their roles and responsibilities. We remain focused on increasing the impactful moments that arise when we work together in person – aligned with our commitment to performance and innovation. As a new joiner, you can count on this hybrid model to accelerate your learning and onboarding experience here at BlackRock.

XML job scraping automation by YubHub

We are seeking an IT Administrator - Endpoint Management to own the enterprise endpoint strategy with primary responsibility for administering Replit’s MDM platforms, enforcing secure baseline configurations aligned to CIS Level 1 benchmarks and ensuring all corporate endpoints (primarily macOS) are properly patched, compliant, and securely configured.

What You'll Do

• Own and administer enterprise endpoint management platforms with primary responsibility for Iru/Kandji configuration, policy design, and lifecycle management

• Establish and enforce enterprise endpoint standards aligned to CIS Level 1 benchmarks

• Design, implement, and maintain secure baseline configurations for macOS endpoints ensuring systems are hardened and secure by default

• Ensure all endpoints remain compliant with patching policies, minimum OS requirements, and approved software versions through automated enforcement

• Administer and maintain an internal approved application catalog including packaging, version control, testing and secure deployment

• Ensure endpoint detection and response (EDR) tooling is properly deployed, configured and monitored (SentinalOne preferred)

• Implement and enforce appropriate data loss prevention (DLP) measures across endpoints to protect corporate data and intellectual property

• Develop compliance dashboards and reporting to track endpoint posture, remediation timelines and risk exposure

• Partner closely with Security Operations (SecOps) to investigate, contain, and remediate endpoint-related security incidents

• Participate in incident response activities including forensic coordination, containment actions and post-incident remediation

• Contribute to internal and external audits, ensuring endpoint controls meet SOC 2 and ISO 27001 requirements; prepare evidence and support auditor walkthroughs

• Own licensing strategy across administered platforms, ensuring appropriate license assignment, cost optimization, feature alignment, renewal management and utilization reporting

• Continuously evaluate new endpoint features, security capabilities, and OS updates

• Create and maintain technical documentation, configuration standards and operational runbooks

Required Skills & Experience

• 6+ years of experience in endpoint administration, device management, and enterprise IT operations in a cloud-first environment

• Hands-on expertise administering Iru/Kandji or comparable Apple-focused MDM solutions

• Understanding of MDM solutions for Microsoft Windows and Linux (Jump Cloud preferred)

• Strong understanding of CIS Level 1 controls and endpoint hardening principles

• Experience deploying and administering EDR solutions and coordinating with security teams on alert triage and remediation

• Experience managing OS patching strategies, update enforcement policies and compliance reporting

• Familiarity with DLP technologies and endpoint-based data protection controls

• Experience participating in compliance programs aligned to SOC 2 and ISO 27001 frameworks supporting audit evidence collection and control validation processes

• Strong troubleshooting skills with the ability to diagnose complex endpoint configuration and policy conflicts

• Clear documentation and communication skills with the ability to articulate technical risk and remediation strategies

Bonus Qualifications

• Active Replit user and passionate about making software creation more accessible

• Been part of a rapid growth SaaS startup

Full-Time Employee Benefits Include

• Competitive Salary & Equity

• 401(k) Program with a 4% match

• Health, Dental, Vision and Life Insurance

• Short Term and Long Term Disability

• Paid Parental, Medical, Caregiver Leave

• Commuter Benefits

• Monthly Wellness Stipend

• Autonomous Work Environment

• In Office Set-Up Reimbursement

• Flexible Time Off (FTO) + Holidays

• Quarterly Team Gatherings

• In Office Amenities

Want to learn more about what we are up to?

• Meet the Replit Agent

• Replit: Make an app for that

• Replit Blog

• Amjad TED Talk

Interviewing + Culture at Replit

• Operating Principles

• Reasons not to work at Replit

Compensation Range

$95K - $175K

XML job scraping automation by YubHub