Job

Senior Network Security Engineer

REMOTE, USA

REMOTE  **During and after Covid this is a 100% remote/ virtual positions position, BUT candidates need to be in the Pacific, Mountain, or Central time zones.**

 

We are searching for a talented Senior Network Security Engineer who administers, tests, implements, troubleshoots and advises on Security Infrastructure architectures to include all Network Security related systems and their components. This role includes responsibility for implementing appropriate IT security procedures, configuring security software, and implementing security administration functions across multiple platforms. The ability to effectively communicate with all levels of the business on security issues, ensuring that the company’s information assets are properly protected, is essential.

 

Duties & Responsibilities:

 

  • Performs analysis of all threat/vulnerability sources assessing any impacts to infrastructure and systems and provides an assessment, recommendations and potential actions correlative to the security threat posture and matures the current vulnerability and scanning/assessment capabilities.
  • Conduct security assessments of firewall, router, switches, VPN, SSL concentrator and other network component security configurations
  • Provide design and expert technical input / support for engineering network security solutions based on recognized standards and best practices
  • Provide planning, design, engineering, implementation, configuration, operational support and troubleshooting for our network security infrastructure
  • Research and assess new threats and security alerts, and recommends remedial actions to ensure network security design is resilient enough to deal with the latest threats and attacks scenarios
  • Communicate with the Network Team regarding pertinent information security issues and provide periodic network architecture, design, configuration, and security posture updates
  • Advise on network design and security architecture
  • Validation of firewall configuration, rule creation, and assessment of firewall traffic flow (dynamic routing, log analysis).
  • Coordinates response, triage and escalation activities for security events affecting the company’s information assets
  • and activities with the incident response team as part of the security incident response lifecycle.
  • Must be able to present to different audiences and adjust accordingly (business, technical and management) either structured presentations or ad-hoc.
  • Leads efforts in the improvement and development of process/procedure manuals and documentation for the escalation of threat intelligence, advanced persistent threat detection, vulnerability analysis and incident response handling.
  • Maintains a continuous process improvement work environment, for security monitoring, security configuration standards and threat analysis recommending and implementing new/improved process in accordance with existing policy, industry standards and best practices.
  • Stay current with industry trends and emerging technologies relating to Security Operations.
  • Identify and communicate threats and vulnerabilities that could impact business operations.

 

Qualifications:

 

  • Minimum 6 years of Network and Information Security related technology experience.
  • Minimum 6 years of experience in the design, development and implementation of large scale Wide Area Network (WAN) architectures with a strong focus on network, firewall, load balance, router and DMZ architecture.
  • Extensive knowledge and experience with network. (e.g. Routing and Switching, Routing Protocols, WAN, Packet Analysis, Firewall, Load Balancing, Web Proxy, IP Telephony, Capacity Planning, IT Tools and other relevant technologies.
  • Network protection including firewalls, IDS/IPS, VPN, NAC
  • Design/Implement/Troubleshoot Firepower, FTD (Firepower Threat Defense/IDS/IPS)
  • Design/Implement/Troubleshoot Cisco ASA (Adaptive Security Application) Firewall
  • Design/Implement/Troubleshoot VPN Technologies including but not limited to Cisco IPSEC and AnyConnect (NAM/Posture)
  • Experience with NAC/ISE integration with wired, wireless, VPN as well as posture and client provisioning, PxGrid
  • Very strong background and ability to monitor network security by analyzing Intrusion Detections reports, firewall logs and other application sources
  • Understanding of PCI and to implement controls for certification
  • Knowledge of common network, authentication and security protocols (e.g. SNMP, TLS, SSL, DNS, SSH, HTTPS, SMTP, LDAP, KERBEROS, RADIUS and FTPS)
  • Strong understanding of network security architectures, solutions, processes, frameworks, and components
  • Experience with Cloud solutions such as AWS, Azure
  • Thorough knowledge and experience with Network security standards (Network architecture analysis, Network Administration, DMZ, Load balancer and Firewall Engineering)
  • Experience with network and performance management tools, security tools and appliances, layer 2 technologies, wireless technologies
  • VLAN security and design
  • Report on key compliance and operational metrics for the network security infrastructure
  • Incident response including security monitoring, network and endpoint visibility, threat management, and forensics
  • Experience and understanding of network design and troubleshooting specificity as it applies to interoperability of security systems with the network.
  • Knowledge of available Information Security resources, common security issues, risks and mitigation strategies
  • Experience in information security controls design, planning and support
  • Monitors security bulletins and alerts from all Partners’ network system vendors. Evaluates vulnerability
  • Responds to network security incidents. Works along with resource owners during and after security breaches recommends best practices and assesses the scope of damage and risk to vital network resources.
  • Risk / compliance including policy management, vulnerability management, log management, and change control, and security analytics / reporting (e.g. Splunk)
  • Knowledge of word processing, spreadsheets, presentation creation, databases and email software required. Proficiency in Microsoft Office applications preferred.
  • Ability to communicate clearly, effectively, persuasively and credibly with internal and external customers and various levels of management both verbally and in written form
  • Self-starter with the ability to work independently or within a dynamic team environment
  • Attention to detail, logical and analytical thinking and systematic problem solving capability
  • CISSP - ISC2 Certified Information Systems Security Professional

 

Preferred:

 

  • CCNA Security, CCNP Security, CCIE Security, CISSP, CISM, CCNA Cyber Ops
  • Additional Technical certifications are a plus
Apply for this Position
Contact Info

2600 Abbey Court
Alpharetta, Georgia 30004

Accolades