Information Security Engineer

Summary

Join MetroSys as an Information Security Engineer to contribute to a wide array of InfoSec initiatives, tool maintenance, and daily security operations for our enterprise client. This role demands a multifaceted cybersecurity expert with practical experience across diverse security tools and methodologies, emphasizing operational support and project execution. You will manage and maintain web proxy and VPN solutions, implement DMARC configurations, and drive vulnerability management processes. Responsibilities also include utilizing Linux for security operations, leveraging KQL for analytics, assisting in penetration testing remediation, and contributing to Information Security aspects of M&A activities. Daily tasks involve responding to escalations, investigating threats, and handling general security requests. The ideal candidate possesses 5+ years of experience in information security roles within enterprise environments.

Requirements

• 5+ years in information security roles, ideally with enterprise environments
• Direct experience with Zscaler, Linux administration (Ubuntu/RHEL), and email security protocols (DMARC)
• Familiarity with penetration testing processes, remediation tracking, and vulnerability management
• Excellent problem-solving and communication skills

Responsibilities

• Manage and maintain web proxy and VPN solutions, specifically Zscaler
• Support and implement DMARC configurations to enhance email security
• Drive vulnerability management processes, including scanning, analysis, and remediation coordination
• Utilize RHEL and Ubuntu for Linux-based security operations and system hardening
• Leverage Kusto Query Language (KQL) for analytics and threat hunting in Microsoft environments
• Assist in penetration test remediation and address findings related to security program gaps
• Contribute to Information Security aspects of M&A activities, including risk assessment and integration planning
• Respond to escalations related to Zscaler tickets and MDR alerts
• Triage and investigate potential phishing emails and other end-user reported threats
• Handle general security requests, documentation, and collaboration with IT/security teams

Preferred Qualifications

Proficiency in KQL and Microsoft security tooling is a strong plus