WDAC Implementation Specialist / Endpoint Security Engineer
Duration: 3 months (possibility of extension)
Location: Sydney
Policy Development & Deployment
* Design and implement WDAC policies using XML and convert them to binary for enforcement.
* Deploy WDAC policies via Microsoft Intune, Endpoint Configuration Manager (ConfigMgr), or PowerShell.
* Configure audit mode before enforcement to minimize disruption and validate policy effectiveness.
Security & Compliance
* Enforce application control to prevent unauthorized code execution, including kernel‐level protection.
* Align WDAC implementation with regulatory requirements and organizational security frameworks.
Integration & Management
* Integrate WDAC with Microsoft Defender Antivirus and other endpoint security tools.
* Enable managed installer functionality for automated trust of Intune‐deployed applications.
Monitoring & Troubleshooting
* Analyze WDAC logs using Microsoft Security tools (e.g., Advanced Hunting) to refine policies.
* Resolve application blockage issues and maintain policy updates for evolving business needs.
Documentation & Training
* Maintain detailed documentation of WDAC configurations and deployment processes.
* Provide training and support for IT teams and end‐users on WDAC policies.
* Strong knowledge of Windows security architecture, application control, and endpoint protection.
* Hands‐on experience with Microsoft Intune, ConfigMgr, and PowerShell scripting.
* Familiarity with Code Integrity policies, audit vs enforcement modes, and policy signing.
* Ability to manage large‐scale deployments and troubleshoot complex WDAC issues.
Preferred Experience
* Previous experience implementing WDAC in enterprise environments.
* Understanding of Zero Trust security models and compliance frameworks.
* Knowledge of ASD Essential Eight or similar security hardening guidelines.
Seniority Level
Mid‐Senior level
Employment Type
Contract
Job Function
Information Technology
Industries
Information Services, IT Services, IT Consulting
#J-18808-Ljbffr