TITLE: Senior Network Security Engineer
DURATION: Contract To Hire (3-6 Months CTH)
LOCATION: Princeton, NJ
TYPE: Hybrid (Onsite three days per week)
THE CHALLENGE:
We are expanding our IT infrastructure security team and seeking an experienced Senior Network Security Engineer to join our Princeton, NJ headquarters (working onsite three days per week). This role encompasses overseeing the entire network infrastructure security technology stack, from design to implementation. The successful candidate will continuously enhance their knowledge of the latest infrastructure security technologies within a collaborative environment. This position is part of a larger team supporting client’s LAN/WAN security infrastructure.
MUST HAVES:
- 5-7 years of hands-on experience as a Network Security Engineer, & 3-5 years of hands-on experience as an Infrastructure Engineer administering and configuring enterprise-wide LANs, WANs, WLANs, VPNs, and Controller-based Lightweight APs, with a focus on Cisco Network & Security implementation.
- Advanced experience managing and troubleshooting Network Security devices and tools, specifically Adaptive Security Appliances (ASA), Firepower Threat Devices (FTD), Firepower Management Console (FMC), Cisco Identity & Security Engine (ISE), and DNAC.
- Experience in designing and deploying Cisco Wireless LAN Controllers and Identity Service Engine (ISE).
- Experience in designing Firewalls & Switches
- A combination of security and networking would be ideal.
ROLES & RESPONSIBILITIES:
- Design, implement, and support short- and long-term strategic plans to ensure local and wide area network capacity meets current and future demands, encompassing both physical and cloud Infrastructure as a Service (IaaS) technologies.
- Develop and deploy rigorous methodologies for testing network performance and generating network performance statistics and reports.
- Manage network asset inventory and related documentation, practicing network asset management.
- Provide support for weekly meetings and committees, including weekly Vulnerability and Risk Management meetings.
- Collaborate with other teams, partners, vendors, and technical staff for comprehensive architecture and support functions across the organization.
POSITION REQUIREMENTS:
- Bachelor’s degree in a computer-related field (e.g., programming, computer science, engineering) or equivalent training and work experience.
- 5-7 years of hands-on experience administering and configuring enterprise-wide LANs, WANs, WLANs, VPNs, and Controller-based Lightweight APs, with a focus on Cisco Network & Security implementation.
- Advanced experience managing and troubleshooting Network Security devices and tools, specifically Adaptive Security Appliances (ASA), Firepower Threat Devices (FTD), Firepower Management Console (FMC), Cisco Identity & Security Engine (ISE), and DNAC.
- Experience in designing and deploying Cisco Wireless LAN Controllers and Identity Service Engine (ISE).
- Excellent knowledge of Cisco routing and switching technologies, including Border Gateway Protocol (BGP).
- Hands-on experience in designing, supporting, and configuring enterprise networking components such as Cisco Nexus 9000, Point-to-point WAN, Cisco VPN, switches, firewalls, and wireless networks like Nexus 9000, 9400, and 4500 Switches.
- Knowledge and experience implementing Quality of Service (QoS).
- Extensive design and support experience with network monitoring applications.
- Manage and ensure optimal operation of all network hardware and equipment in a hybrid networking environment (physical and cloud).
- Strong multitasking, prioritization, and project management skills.
- Quick learner with the ability to comprehend technical and business concepts.
- Effective communication skills to articulate technically advanced ideas in layman's terms.
- Research proficiency for networking issues and products.
- Collaborative approach to working with technical and business colleagues to deliver optimal technology solutions.
PREFERRED EXPERIENCE:
- Technical knowledge of designing and supporting cloud networking environments (e.g., AWS, Direct Connect, VPC, Transit gateways, NAT gateways, Network Load Balancers).
- Industry-recognized certifications such as CCNP, CISSP, and CCIE.