Endpoint Security Engineer

Press Tab to Move to Skip to Content Link

Responsible for configuring and maintaining security controls of endpoint security infrastructure; ensures that the security systems documentation is up to date. Identifies and defines endpoint system security standards and requirements. Develops and enforces security plans and standards; ensures that network and system security best practices are executed and implemented . Provide support to the Security Architect in enterprise security projects including defining configuration standards, testing and implementation. Leads the research, evaluation and implementation of ISD security tools and small projects. Provides risk assessment support related to endpoint security and/or security controls to be architected to other information security departments. Maintains and matures the security tools to ensure effective prevention and detection of threats/incidents. Develops enterprise level metrics for endpoint security controls. Act as the subject matter expert on security of assigned technology domain/area, i.e., antivirus, intrusion detection/prevention, endpoints (server, workstations/laptops, ATM), operating system, database, etc.

Specific Duties & Responsibilities:

• Prepares the plans to deliver/implement the security infrastructure strategy prepared by the Security Architect.
• Provides support to the Security Architect in enterprise security projects by defining configuration standards, security requirements, preparing test plans and all the necessary documentation for project approval and implementation.
• Designs/defines security configuration standards as well formulate, review and maintain IT security policies, technical standards, internal ISD procedures including guidelines related to endpoints and endpoint security technologies/solutions, i.e., intrusion detection/prevention, email security, use of portable devices, BYOD, etc.
• Develops detaileddesigns for implementation based on the approved IT security systems and infrastructure architecture.
• Ensures that endpoint security controls and systems are securely configured, functions effectively and efficiently , and maintained in accordance with security best practices and industry standards.
• Develops enterprise level metrics (risks and performance indicators) for endpoint security controls.
• Test, implement, maintain and manage endpoint security solutions that detect, prevent, and respond to security incidents.
• Provides support to ISD-Consulting and Project Services Department (CPSD) and ISD-Security, Quality Assurance and Risk Assessment Department (SQRD), serve as the security subject matter expert related to endpoint security infrastructure and architecture. Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.
• Research, analyze and evaluate new endpoint security technology and cost-effective solutions and make recommendations for implementation. Whenever necessary, work with vendors and business units to ensure solutions/capabilities/enhancements support business goals and objectives.
• Prepare all the necessary documentations in presenting and having the business case for endpoint security projects approved. Provide specific, detailed information for hardware/software selection, implementation techniques and tools for the most efficient solution including present and future capacity requirements.
• Manage the testing of technical controls related to endpoints and endpoint security.
• Develop/Provide training/support to endusers on how to use endpoint security solutions effectively.
• Oversee/Manages the implementation of baseline system security standards various legacy systems.
• Perform regular security configuration reviews, ensure efficacy of controls and use is optimized.
• Review and/or evaluate vendor performance as part of VPRC process.
• scanning Review installation and changes to security infrastructure, i.e., firewall, VPN, routers, IDS technologies, servers and network devices and assess impact to security posture and operations.
• Collaborates and coordinates with other ISD Departments to ensure that holistic ISD service is provided to internal customers.
• Establish disaster recovery strategy of security tools implemented and ensures it is regularly tested for effectiveness.
• Stay up to date on the latest security technology, trends, vulnerabilities and threats; maintain a high level of technical expertise in the field of endpoint security.
• Proactively works with the SAID Head in implementing programs for the continuous improvement of the bank's information security plans and strategies.
• Perform other information security governance, risk and compliance related duties and responsibilities as directed by the SAID Head.

Be #InGoodHands with Metrobank

Here at Metrobank, we don't simply hire employees—we hone future leaders. We provide opportunities that enhance your skills and unlock your talents, helping you evolve into a well-rounded individual. We supply you with all the pieces you need to do your best work, unleashing your full potential to help you secure your future and lead a fulfilling career. And with Metrobank's strong heart for the community, you have the chance to give back and make worthwhile contributions to our nation's economic and social development. With Metrobank, a meaningful life is within your reach

Position Title: Endpoint Security Engineer

Job Summary:

Responsible for configuring and maintaining security controls of endpoint security infrastructure; ensures that the security systems documentation is up to date. Identifies and defines endpoint system security standards and requirements. Develops and enforces security plans and standards;ensures that network and system security best practices are executed and implemented. Provide support to the Security Architect in enterprise security projects including defining configuration standards, testing and implementation. Leads the research, evaluation and implementation of ISD security tools and small projects. Provides risk assessment support related to endpoint security and/or security controls to be architected to other information security departments. Maintains and matures the security tools to ensure effective prevention and detection of threats/incidents. Develops enterprise level metrics for endpoint security controls. Act as the subject matter expert on security of assigned technology domain/area, i.e., antivirus, intrusion detection/prevention, endpoints (server, workstations/laptops, ATM), operating system, database, etc.

Specific Duties & Responsibilities:

• Prepares the plans to deliver/implement the security infrastructure strategy prepared by the Security Architect.
• Provides support to the Security Architect in enterprise security projects by defining configuration standards, security requirements, preparing test plans and all the necessary documentation for project approval and implementation.
• Designs/defines security configuration standards as wellformulate, review and maintain IT security policies, technical standards, internal ISD procedures including guidelinesrelated to endpoints and endpoint security technologies/solutions, i.e., intrusion detection/prevention, email security, use of portable devices, BYOD, etc.
• Develops detaileddesigns for implementation based on the approved IT security systems and infrastructure architecture.
• Ensures that endpoint security controls and systems are securely configured,functions effectively and efficiently, and maintained in accordance with security best practices and industry standards.
• Develops enterprise level metrics (risks and performance indicators) for endpoint security controls.
• Test, implement, maintain and manage endpoint security solutions that detect, prevent, and respond to security incidents.
• Provides support to ISD-Consulting and Project Services Department (CPSD) and ISD-Security, Quality Assurance and Risk Assessment Department (SQRD), serve as the security subject matter expert related to endpoint security infrastructure and architecture. Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.
• Research, analyze and evaluate new endpoint security technology and cost-effective solutions and make recommendations for implementation. Whenever necessary, work with vendors and business units to ensure solutions/capabilities/enhancements support business goals and objectives.
• Prepare all the necessary documentations in presenting and having the business case for endpoint security projects approved. Provide specific, detailed information for hardware/software selection, implementation techniques and tools for the most efficient solution including present and future capacity requirements.
• Manage the testing of technical controls related to endpoints and endpoint security.
• Develop/Provide training/support to end-users on how to use endpoint security solutions effectively.
• Oversee/Manages the implementation of baseline system security standards various legacy systems.
• Perform regular security configuration reviews, ensure efficacy of controls and use is optimized.
• Review and/or evaluate vendor performance as part of VPRC process.
• scanning Review installation and changes to security infrastructure, i.e., firewall, VPN, routers, IDS technologies, servers and network devices and assess impact to security posture and operations.
• Collaborates and coordinates with other ISD Departments to ensure that holistic ISD service is provided to internal customers.
• Establish disaster recovery strategy of security tools implemented and ensures it is regularly tested for effectiveness.
• Stay up to date on the latest security technology, trends, vulnerabilities and threats; maintain a high level of technical expertise in the field of endpoint security.
• Proactively works with the SAID Head in implementing programs for the continuous improvement of the bank's information security plans and strategies.
• Perform other information security governance, risk and compliance related duties and responsibilities as directed by the SAID Head.