Network Security Engineer

Description:

Technical Qualifications

Advanced knowledge of and experience with networking and network protocols (e.g. TCP/IP, routing, Palo Alto and Juniper firewalls, Inflobox, DNS, DDNS, DHCP, F5 LTM, SSH, VPNs), IP routing protocols including RIP, BGP, OSPF, IP Multicast, MPLS.

Thorough understanding of modern service providers, TCP/IP data networks using standards and technologies including but not limited to: Ethernet, OSPF, IGMP, STP, RSTP, 802.1q, 802.11n, and 802.11ac.

Experience with Policy Based Routing, Quality of Service, netflow, Wireless 802.11 a/b/g/n/ac, virtual networks, NAT, ACL controls, Web Security/URL Filtering, IPSec, Intrusion Prevention System (IPS), Malware Prevention

IPv4 and IPv6 experience is must.

Knowledge, skills and experience with HP and Aruba routing, switching, and wireless hardware, software and protocols including Aruba Mobility Controllers, Aruba Instant Aps, Aruba Airwave, Aruba Central, Aruba Activate, Security, Aruba ClearPass

Experience with SDN, SD-WAN products and services, Working knowledge of structured cabling systems and network facilities.

Experience in firewall design and in network security including: Device Hardening, IDS/IPS, SIEM, Firewalls, and IPSec, vulnerability assessment and intrusion detection.

Strong experience in devices like Checkpoint, Juniper, Fortigate and Palo Alto Firewalls.

Expertise in configurations of rules, routing, Natting, policies and profiles in Firewalls.

Plan, implement and documented change of services including hardware replacement and enhancements.

Establish and maintain IPSec-based connectivity with external vendors

Good experience in migrating the VPN's from legacy to new NGFW firewalls

Experience in design and deployment of forward and reverse proxies

Produce and maintain timely, accurate engineering documentation to support implementation, operations support and quality/compliance requirements.

Enhances security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members.

Determines security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates.

Plans security systems by evaluating network and security technologies; developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices; designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; adhering to industry standards.

Implements security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation.

10 years of progressive experience in network architecture, design, engineering and implementation in global IT networks and network security

Key Skills Required: Network Security, firewall management, IPS, IDS, DNS, IPAM, DHCP, Telecom, WAN