Security Engineer

About Us: Prometric is a leading provider of technology-enabled testing and assessment solutions to many of the world’s most recognized licensing and certification organizations, academic institutions, and government agencies. We support more than 7 million test takers annually at our testing locations in 180 countries around the world. With over three decades of experience working with clients of all sizes across a multitude of industry sectors, our mission is to design and deliver the highest quality and most innovative testing solutions anytime, anywhere.

Cybersecurity Engineer Job Overview

As a Prometric Security Engineer you will be a core player who participates in and leads multiple security efforts. You will work closely with development teams, product managers and our enterprise teams to ensure that Prometric brands and products are secure. The ideal candidate will have a strong background in one or more of the below cybersecurity disciplines, with at least 3 years of relevant experience in that field. This position requires expertise in managing and securing our various environments and endpoints.

System Focus

• Managed current antivirus on Microsoft Windows Server
• Migrate server environment from antivirus solution to Defender.
• Plan and deploy WAF technologies.
• Incident Response tickets and participate in on call rotation.
• Experience with Azure, containers, Kubernetes, pipelines.
• Strong experience with networking, firewalls, load-balancers for On-Premises and in Cloud environments
• Strong experience with networking, firewalls, load-balancers for On-Premises and in Cloud environments
• Good understanding of Virtualization technologies - VMs, Containers, VMware
• Experience in automation with cloud solutions and with Terraform.
• Microsoft Windows Server OS- 2008, 2012, 2016, 2019, 2022
  
  

Endpoint Focus

• Configure and manage Microsoft Defender and Intune for endpoint protection and device management across the organization.
• Monitor threat intelligence feeds for the latest email-borne threats.
• Identify email-based threats and malicious emails and be able to respond to compromise.
• Support secure email protocols, routing and configuration (e.g. DMARC, DKIM, SPF, DLP, SPAM Filtering).
• Previous experience with managing and maintaining one or more key information security systems used by Prometric, including: Microsoft Defender EDR, Netskope, Proofpoint, Tenable, Trend Micro, Intune; in addition to other key security technologies.
• Strong understanding of endpoint security concepts, including malware prevention, detection, and response, endpoint detection and response (EDR), and endpoint management.
• Hands-on experience with security technologies such as antivirus, endpoint firewall, endpoint encryption, and endpoint detection and response (EDR) solutions.
• Endpoint Security Strategy: Develop and execute comprehensive endpoint security strategies tailored to meet the unique needs of users, leveraging Microsoft Defender, InTune, and other EDR/MDR solutions.
• Solution Implementation: Lead the implementation and configuration of endpoint security solutions, ensuring seamless integration with existing infrastructure and alignment with security best practices.
• Technical Expertise: Serve as a subject matter expert on endpoint security technologies, providing guidance on deployment, configuration, and optimization of Microsoft Defender, InTune, Netskope, DLP, and other relevant tools.
• Incident Response: Collaborate with incident response teams to investigate and mitigate endpoint security incidents, utilizing advanced forensic techniques and analysis of security logs and alerts.
• Threat Intelligence: Stay abreast of emerging threats and vulnerabilities affecting endpoint security, and incorporate threat intelligence into security strategies and operational procedures.
• Security Assessments: Conduct endpoint security assessments, identifying gaps and vulnerabilities in existing security measures, and recommending remediation actions to enhance overall security posture.
  
  

Infrastructure

• Expertise in Palo Alto NGFW, Meraki, and NSX DFW.
• Documenting and maintaining the documentation for the networking infrastructure, data flows, security compliance, and ports-and-protocols requirements.
• Firewall rule analysis, clean up, requests and troubleshooting.
• URL Requests using content filtering in Meraki.
• Applying hardening and best practices to firewalls
• Plan, design, and implement Micro-segmentation solutions.
• Conduct vulnerability assessments, penetration tests, and audits to identify and mitigate network security risks and gaps.
• IDS/IPS deployment, maintenance
  
  

Main Duties & Responsibilities

• Collaborate with cross-functional teams to integrate security controls into overall security architecture and policies.
• Provide technical expertise and guidance to junior team members and other IT staff on security best practices and procedures.
• Stay current with emerging threats and security technologies and recommend enhancements to the security posture accordingly.
• Incident Response tickets and participate in on call rotation.
  
  

Essential Criteria

• Bachelor’s degree in computer science, information security, or related field (or equivalent experience).
• Technical certification in security or vendor specific certifications
• 3+ years of cybersecurity work experience.
• Accustomed to working in a complex environment developing complex solutions in a cybersecurity context.
• Previous experience configuring vulnerability and system hardening scans.
• Must have very strong problem solving/troubleshooting skills.
• Must be able to pay strong attention to detail while multi-tasking and maintaining organizational skills.
• Time management and strong communication skills
• Ability to explain technical concepts to inexperienced users.
• Ability to communicate at a conceptual level to management and at a detailed level to engineers and administrators.
• Proven ability to work independently and collaboratively in a fast-paced environment, managing multiple priorities and delivering high-quality results on time.
  
  

Prometric is an Equal Employment/Affirmative Action employer. We do not discriminate in hiring based on sex, gender identity, sexual orientation, race, color, religious creed, national origin, physical or mental disability, protected Veteran status, or any other characteristic protected by federal, state, and local law.