Information Security Engineer - Endpoint

About this role

Palantir seeks a seasoned Information Security Engineer to safeguard its global Windows and Active Directory infrastructure against sophisticated threats. You'll lead detection, prevention, and investigation efforts across enterprise systems while applying deep adversarial knowledge of Windows security vulnerabilities and attack techniques.

What you'll do

• Own security of global Windows infrastructure and Active Directory environments
• Develop and maintain detection rules for Windows-based attacks (DCSync, Kerberos exploits, persistence mechanisms)
• Conduct 24/7 monitoring, threat detection, and incident investigation
• Build and enhance threat hunting pipelines and security automation
• Design hardening strategies and security controls for Windows systems
• Collaborate with security team to respond to sophisticated adversaries

What they're looking for

• Advanced Windows and Active Directory security knowledge
• Threat detection and hunting experience
• Windows kernel and privilege escalation understanding
• Kerberos protocol expertise
• Security tool development and automation
• Incident investigation and response
• Adversarial threat modeling
• Log analysis and SIEM platforms