The Security Network Engineer - Security is responsible for the collaboration and implementation of network security solutions developed by the Information Security and Networking Architects that have been approved by the Chief Information Security Officer and Senior Director of Infrastructure. Works on security-related projects, initiatives, or remediation requirements and includes various aspects of network security testing and implementation of new products or improvements to existing and current network security-related products and systems.
JOB DUTIES AND RESPONSIBILITIES:
- Project, configure, implement, and maintain all network-related security platforms and any other related software that ensures the stability and security of those network security systems.
- Plan and appraise ongoing assessments in collaboration with the Information Security Architect and Cyber Security Risk Engineer of application control, firewall, SIEM, VPN, SSL, intrusion detection or intrusion prevention, and other network component policies that protect the network.
- Guarantee network security best practices are executed through auditing: router, change control, switch, firewall configurations, and monitoring in compliance with standards and guidelines administered by the Chief Information Security Officer
- Responsible for periodic vulnerability testing, and co-leading remediation projects with the Information Security team.
- Articulate systems and methodologies as well as reply to security-related events and support in remediation efforts through security incident response.
- Coordinate and oversee log analysis for company-managed services offerings to ensure customer policy and security requirements are met.
- Maintain network security devices to enable pro-active defense of networks within a client or managed service SOC environment, providing protective monitoring to multiple commercial customers in coordination with guidance from an Information Security Architect and Networking Architect
- Work under the direction of Networking and Information Security to maintain security devices and show practical experience in managing firewalls, content filters, NIDS/NIPS, proxy servers, network TAP/SPAN, and packet capture devices.
- Work with customers to form and fix appropriate policy and signature rules. This comprises tuning and development of the creation of custom network intrusion detection and heuristic signatures and rules, including the efficient onboarding and understanding of varying network log sources into SIEM environments.
- Work in collaboration with appropriate stakeholders to ensure customers have devices that are fully operational and secure.
Requirements:
5-8 years' experience with Network Security, and HIPAA/HITECH Security knowledge required.
Ability to remain calm while multi-tasking and working under pressure at a fast pace.
Extensive technical know-how of security network devices (switches, firewalls, cryptography) and any other security networking hardware or software tools.
Minimum, five years’ experience identifying threats and developing appropriate protection measures.
Knowledge of Cisco ASA Firewall and strong routing & switching experience is an added advantage.
Reviewing system changes for security implications and recommending improvements.
Excellent hands-on experience and knowledge implementing, configuring, integrating, and supporting the network security with Checkpoint, Forescout, BigIP LTM, GTM, IPAM, Cisco ISE, Gigamon, Microsoft, Cylera and other security solutions (Not all are needed but the more you have, the more advantages you accrue in securing a job).
Knowledge of networking concepts such as WAN connectivity, transport types and protocols, and experience with wireless technology and Wireless deployment.
Cisco-orientated IOS understanding, working with Routers and Switch Platforms, and Experience working with stakeholders at an Operational Level. Attention to detail and good problem-solving skills.
Certifications preferred include CISCO - CCNP, CCNA, CCIE, CCSA, FCNSP, CISSP, SSCP, CEH, GIAC, Security +, OSCP, CompTIA Server+, MCSE, LPIC, CompTIA Cloud+, VCP, or CCSE qualified.