Windows 10 Security Engineer

Job Titles:
IT, Telecomms and Communications
£400 to £550 per annum
Contract Type:



Job Description: 

The role involves designing all security aspects of a new Windows 10 build. It entails researching W10 security functionality and utilities and working with engineering colleagues to bake security into the build. Third party and customized security tools such as antimalware, hard drive encryption must be integrated into the build. DB standards and processes must be observed at all stages.

The target platform is invest desktop, laptop and tablet hardware (Surface for example) as well as VDI on ESX. DB have an existing production Windows 7 build and a PoC W 8.1 build which can be used as comparative reference.

The DB technology mantra is: “PROTECT and TRANSFORM” and this applies very well to developing the new and evolved security tools and features in Windows 10 as well as integrating 3rd party security tools.

The engineering remit is to provide a stable, robust, secure and compliant configuration and client that requires minimum support overhead. Comprehensive and professional documentation describing design and architectural aspects is required as technical reference by operational and peer security teams. Some deliverables will depend on the outcome of initial feasibility assessments.

The role involves working in the security area of the Core Desktop Engineering team on the following high-level areas to investigate and design:

1. Security policy settings and configuration
2. Antimalware integration
3. BitLocker hard disk encryption and integration with MBAM
4. Browser security features
5. DEP, ASLR, potentially EMET and other OS memory protections
6. Authentication options
7. TPM uses and advances
8. Assess how to provide alerting and reporting
9. Document why settings/ solutions were chosen as opposed to alternatives
10. Conduct DEV testing
11. Document evidence of all testing and design decisions
12. Provide answers to compliance assessments
13. Create a Windows 10 Security Configuration Guide
14. Create presentation explaining the proposed solution
15. Conduct engineering lab testing

Essential Tech Skills:

• In-depth experience and knowledge of Microsoft Operating Systems, Windows 7, Windows 8 / 8.1, Windows 10
• Understanding of Windows OS architecture
• Knowledge of enterprise security infrastructure
• High awareness of the importance of security compliance and audit and compliance controls
• Experience of a VMware virtualised desktop environment
• Experience in evaluating security weaknesses and vulnerabilities
• Experience in application and OS patching
• Knowledge of Windows GPO configuration
• Familiarity with application deployment and packaging
• Desktop engineering experience
• Scripting skills – PowerShell, VBScript
• Ability to provide clear, comprehensive documentation
• Good verbal and email communication skills
• Highly self-motivated and ability to plan, track and prioritise tasks
• Strong sense of responsibility for stability and security of solutions


• Tertiary education (college, degree, professional training)
MCSE 2000 or above
• Security certification (e.g. ISC2) useful
• Security vendor certification useful

Background/Experience Required:

• High sense of integrity, responsibility and accountability
• Experience in a large, complex, globally distributed work environment
• High awareness of the criticality of stability and availability of production desktop systems
• Knowledge of corporate integration of Microsoft Windows products
• Ability to clearly articulate findings in technical detail
• Stringent attention to detail with no margin for error
• Experience in test environment and providing test plans