Lead Information Security

About the role

Grade Level (for internal use): 11 S&P Global Corporate The Role : Lead Information Security Engineer The Team: Join our Endpoint Security team, a vital part of the Information Security - Information Protection group. We are responsible for safeguarding S&P Global's end-user computing assets by building, maintaining, and optimizing a suite of endpoint security services. Our team collaborates closely with the broader Information Security organization to implement and enhance enterprise security standards, ensuring robust protection with seamless user experience. The Impact: As an Endpoint Security Engineer, you will play a critical role in strengthening S&P Global's endpoint security controls across Windows, Linux, and macOS environments. You will manage endpoint health, compliance, and security policies-including endpoint detection and response, host-based firewalls, device encryption, and privilege management. You'll partner with End-User Compute, Security Operations Centre, and Cyber Incident Response teams to reduce risk and enhance detection and response capabilities.

Responsibilities

• Design, implement, and manage endpoint security solutions (e.g., antivirus, firewalls, intrusion detection/prevention).
• Monitor and analyze endpoint security systems to detect and respond to security incidents promptly.
• Conduct regular security assessments and vulnerability scans to identify and address potential risks.
• Ensure compliance by configuring and maintaining endpoint security systems according to industry's best practices.
• Collaborate with DTS/TSG and other teams to integrate endpoint security into the organization's overall security posture.
• Research and evaluate emerging security technologies and recommend improvements.
• Develop and enforce security policies and procedures for end-users and operations teams.
• Educate and support end-users and operations teams on effective use of endpoint security tools.
• Participate in incident response and remediation efforts as needed.
• Stay current with the latest security trends, threats, and technologies.

Requirements

• 7+ years of hands-on experience with leading endpoint security solutions such as CrowdStrike, BeyondTrust Privilege Management, Microsoft 365 Defender Suite, and Microsoft BitLocker.
• Strong background in End User Computing and Collaboration services, with expertise in device management and access controls for Windows, macOS, iOS, and Android.
• Deep understanding of device compliance, integrity policies, and zero trust principles, especially for remote work environments.
• Experience with Office365 and Azure AD.
• Scripting skills (PowerShell, VB) for automation and policy implementation.
• Proven ability to interpret requirements and implement security policies.
• Bachelor's degree in computer science , Information Security, or related field (advanced degree preferred).
• Operational experience, especially in outsourced environments, is essential.
• Excellent communication, interpersonal, and creative problem-solving skills.
• Ability to work independently and collaboratively within a team.
• Why Join S&P Global?
• Work for an industry leader in data, technology, and intelligence.
• Competitive compensation and comprehensive benefits.
• Dynamic, global team environment.
• Exposure to the latest security technologies.
• Hybrid work arrangements for flexibility.
• Be part of a mission-driven Information Security team protecting against global cyber threats.
• What's In It For You?
• Our Mission:
• Advancing Essential Intelligence.
• Our People:
• Our Values:
• Integrity, Discovery, Partnership

Benefits

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at spgi? Share your experience