Job Description :
Description:
The Network Security Engineer is a member of a network security operations team supporting multiple enterprise data centers for a large public sector client. This person will be a coordinator, firewall administrator, trainer, and advisor on network security for the client. This position enables the client to meet their business objectives by increasing the security of the Client Networks while lowering the risk of misuse of information and denial of service.
Responsibilities
The consultant’s responsibilities involve the following:
Implements and maintains security policies at access points to Client networks including the Internet, Remote Access/VPN, Enterprise Data Center, and Business Partner connections.
Implements and documents procedures for identifying network security policy violations. Automates the review of firewall logs. Devises and documents appropriate actions and channels of communication in the event of suspected violations of network security.
Assists in planning, implementation, installation, administration, monitoring, maintenance, and performing upgrades of Client firewalls (Checkpoint, Provider-1 Environment, Cisco ASA/FWSM, Juniper SRX
Functions as technical resolver on complex network troubleshooting issues.
Experience with application load balancers – Cisco CSS, CSM, Citrix NetScaler’s.
Experience in implementing Nexus switches 2K/5K
Experience with code upgrades (Firewall/Load Balancers)
Focus on operational changes, incident response, and problem management using ITIL aligned procedures and tools (ITSM
Works with vendors concerning security and network access requirements. Serves as a central point of contact to coordinate and implement network access and ensure network security. Assists in security efforts regarding the development and implementation of secure Client systems and applications.
Provides support for Enterprise VPN (Juniper) systems through access controls in firewall policies and monitoring of firewall logs.
Assess current and proposed network designs and proactively makes recommendations based on customer requirements.
Will perform other duties as assigned.
Participate in solution architecture & design & security policy meetings with EISO and appropriate groups
Conducts periodic audits of new and existing implementations to ensure compliance with Clients security standards in such areas as: networks, applications, software distribution, version control, optimization, documentations, and user access to computing resources and applications.
Supports security functions with understanding and experience in the areas of current Active Directory technology, LAN and WAN topology and technology, and host-based security agent’s implementation.
Provides technical support and backup functionality within the Security & Voice/Video Operations Section.
Requirements:
Must pass an extensive background check.
Cisco certifications highly desired (CCNP, CCDP, CCSP, etc)
Proven operational experience with high availability networks.
Excellent communication skills both oral and written to clearly communicate with clients are a must.
5+ years of experience as a Network Engineer with emphasis on data center routing, switching, and network security standards/best practices, design, and implementation
Knowledge and hands-on experience operating network equipment (firewalls, load balancers, routers, switches) in a high availability, high capacity environment.
Have ability to participate in an on-call rotation.