NETWORK SECURITY ENGINEER

Seeking a Network Security Engineer to work within a team of engineers for a Financial Services company. The Network Security Engineer must demonstrate extensive expertise working with Network Security centric platforms within large organizations. You will provide support across several business and technology groups within the organization.

Responsibilities include:

• Document well analyzed implementation and reversion plans for all changes
• Administer and maintain network security platforms such as: Firewalls; web secure gateways; network administration control; DNS; DHCP; IPAM
• Engage in network or security architecture design discussions to meet the needs and requirements of the business
• Complete service request tickets through the IT Service Manager platform
• Maintain written documentation for new and existing processes and procedures
• Participate in risk assessments and address any findings
• Implement and manage solutions in adherence to the SOP for network security
• Ensure inclusion of security standards and align with relevant reference documents from internal and reference organizations (i.e. PCI/DSS, NIST, ISO, CIS)
• Stay abreast of changes in network security protocols and monitor practices to maintain effective visibility and functionality
• Perform changes on approved maintenance windows during nights and weekends as needed

TOP 3 SKILLS:

• Expert in Web Application Firewall Implementation (WAF) ideally Akamai
• Experienced with Terraform, DNS, DHCP and IPAM
• Knowledge and experience with PCI/DSS, NIST, ISO and CIS

SKILLS REQUIRED:

• Bachelor’s degree in Computer Networking, Cybersecurity or similar
• 5+ years of experience designing, implementing, managing and troubleshooting Palo Alto Firewalls
• Design and management of a PCI/DSS compliant networkExperience identifying network segments subject to PCI/DSS requirements
• Ability to thoroughly analyze change requirements and execute implementation with minimal negative impact
• Extensive experience troubleshooting hybrid network with multiple vendor technologies
• Must have thorough understanding of the OSI model
• Extensive knowledge in at least 3 of the following areas: Network Segmentation Techniques; Secure Web Gateways; Next Generation Firewalls; Network Admission Control Systems; Hybrid Cloud Environments (AWS, AZURE); Wireless Security; DHCP, DNS; IPAM (DDI); Virtual Private Network (VPN); Web Application Firewall (WAF)
• Strong understanding of network technologies including: Routing and Switching protocols; IPsec and GRE tunnels; RADIUS; TACACS+; VRF’s
• Working knowledge of cybersecurity controls and technologies such as Intrusion Detection/Prevention systems (IPS/IDS); Security Incident Event Managers (SIEM); Public Key Infrastructure (PKI); Tunnel Layer Security (TLS); Endpoint Detection and Response (EDR); Threat Intelligence platforms