Job Description :
Title: Firewall Engineer
Location: Bannockburn IL
Duration: Long Term
The Network Engineer is responsible for installing and maintaining network infrastructure by configuring and supporting all Cisco and F5 equipment; troubleshooting network problems and performing daily support of customers, including other internal IT departments. The ideal candidate has 4-6+ years’ experience with Cisco security products, including ASA firewalls
Experience with the following products desired:
Cisco network security design, configuration, and tuning of Cisco security appliances
Excellent understanding of VPN (site-to-site, remote access client, IPSec, IKE, tunnel modes, SSL/clientless/AnyConnect, tunnels between firewalls, routers)
ASA firewalls and FWSMs (NAT, ACL configuration, IPSec and SSL VPN, configuration of IPS, IPS appliances and in-line modules, tuning alerts)
Good experience and knowledge on the Network Security Firewall Palo Alto
Network Access Control (NAC) / Cisco Identity Services Engine (ISE) integration with wired data, wireless infrastructure, and VPN, as well as posture and client provisioning
Working knowledge of network engineering and local and wide area (LAN/WAN) technologies and topologies
Working knowledge of routing protocols, switching, firewall configuration, security best practices, etc.
Experience:
Minimum 5 years of experience in support corporate networks.
Minimum 5 years of experience configuring and supporting Cisco IOS routers and switches.
Minimum 5 years of experience with Cisco ASA firewalls, both CLI and ASDM based. This includes knowledge of AnyConnect based VPN.
Minimum 3 years of experience with EIGRP, including prefix-lists, route-tags and route-maps.
Requirements:
Minimum 8-10 years LAN/WAN experience
Advanced skills with Cisco switches and Cisco routers (including EIGRP, BGP)
Experience with EIGRP, BGP, MPLS, in a multi-vendor network is required.
SNMP (inc. v3) (implementation/administration
InfoBlox (for IPAM, DNS & DHCP)
CCIE preferred (lab)
Relevant industry certifications (CISSP, CISM, CISA, CEH)