SECURITY ENGINEER - IT CSES, EIS

• Enhance security technical controls deployed for a worldwide enterprise

• Design, install, configure, and troubleshoot network security products.

• Serve as the network security design engineer on Micron's security programs

• Provide expert level research and analysis for planning, organizing, and managing corporate-wide network security functions related to firewall & proxy technologies.

• Drive ongoing performance, availability, and capacity optimization

• Identify and document business cases, requirements, and solutions.

• Be responsible for translating functional business requirements into a technical solution that conforms to security standards.

• Strong multidiscipline, operations and implementations background with emphasis on supporting business critical environments.

• Link technical capabilities to GSO's strategic roadmap and business needs

• Identify gaps, suggest best practices to enhance security posture

• Upgrade in-scope security infrastructure to maintain current versions

• Keep patches up to date on in-scope security infrastructure

• Standard escalation to senior staff

• Maintain an audit review process for policy exceptions

• Automation of common processes to reduce workload

• Participation in root cause analysis with senior level engineers

• Troubleshooting with end users

• Response and participation on Critical incidents as part of an Emergency Response Team (ERT)

• Remediating Virus Infections either directly or through collaboration with field services teams

• Develop security key performance indicators around technologies

Must Have:

• Overall experience varying from 2yrs till 6 yrs

• Hand on and expert level experience in handling and troubleshooting below tools and technologies

• Firewall - Cisco, Palo Alto preferred or others

• Web Proxy - Zscaler Preferred or others(ZIA and ZPA )

• SSL VPN - Cisco AnyConnect, Palo Alto Global Protect Preferred or others

• Intrusion Prevention System (IPS) appliances - CISCO Firepower preferred or others

• IPSEC tunnel configuration and troubleshooting

• Stateful inspection and managing next gen firewalls

• Extensive understanding of Remote Access solutions

• Knowledge of external services environments including SSL certificate exchange, Remote access solutions, and Business to Business interconnects (site-to-site VPNs).

• Firewall management and monitoring solutions

• Strong understanding of TCP/IP, web protocols and networking concepts

• Experience as a technical lead guiding other technical resources

• Ability to balance security with end user productivity for technical controls

Good to have:

• Understanding or experience in handling Network DLP technologies like McAfee/Symantec NDLP or Digital Guardian

• Technical and business understanding of endpoint tools methodologies to securely sandbox working environments. E.g.Advance next gen AVs and EDR tools such as Sentinel one, Carbon Black, Crowdstrike, Cylance or other similar tools

• Understanding or experience with security concepts such as access controls, data classification & loss prevention

• Experience in handling PKI infrastructure and certificate management

• Scripting ability in popular platforms

• Strong communication skills (verbal, written, presentation, interpersonal)

• Understanding of web technologies and concepts

• Interest in exploring and learning other cyber security technologies

• Experience with managing Web/Application Servers