Job Description :

Network Security Engineer
Location:  Waltham, MA / Atlanta, GA
Duration: Long Term.
Rate : $70-75/-

Five or more years of experience as hands-on security architect/engineer in a large scale regulated enterprise customer environment or professional services consulting engagement(s) of a similar scope
An active contributor to architecture, design and implementation of multi-account/inter-region AWS solutions with scalable security and compliance controls centered around (but not limited to) network plane
An opinionated practitioner of AWS Well-Architected Framework with emphasis on the 'Security' pillar, knowledgeable and experienced with common Cloud reference architectures (past, current and future states), security standards, best practices, control frameworks and an eye towards simplification
Mastery of AWS native SDN instrumentation (VPC, SGs, ACLs, PrivateLink, etc) and management of advanced network topologies (hub-and-spoke, elastic micro-segmentation, peering, static and dynamic routing, encapsulation, VPN, TGW, public and private endpoints, etc) spanning across account boundaries
In-depth understanding of TCP/IP networking and wide range of AWS tools, services (i.e. Route53,) and mechanisms (e.g. SCPs, resource level policies, etc). to implement security around these protocols and common integration points with on-prem data center environments including various connectivity options AWS provides
Experience with and understanding of core network security functions such as L3/4 stateful firewalls, WAF, IDS/IPS, DDoS, packet inspection,  auditing and logging as well as adjacent domains for AWS and partner ecosystems defending against common threat models 
Knowledge and hands-on experience with end-to-end multi-hop implementations of data in transit encryption solutions (TLS, termination and certificate management, PKI, advanced load balancer configuration options, resource/service side encryption controls)  
A working knowledge and understanding of recent additions to the product line (Network Firewall, FMS, Traffic Mirroring, Ingress, GWLB, IRSA, SGs for Pods, etc) as well as roadmap for AWS security services and features
Hands on experience and ability to express the desired state via declarative IaC tools such as CFN or TF, or via higher level abstractions such as CDK and familiarity with the associated DevOps practices aimed at producing repeatable and fully automated solutions 
Familiarity with L7 communications patterns and advanced security solutions such as service meshes and mTLS for containerized (EKS) and other workloads
Hands-on experience with 3rd party security products (L3/4 next gen firewalls, WAFs, forward and reverse proxies) 
AWS Security/Network Specialty and/or Architect Pro Certifications
Recognized Information Security Industry Certification

Raghavan Arulalan.
Sr. Technical Recruiter
Nityo Infotech Corp.
Suite 1285, 666 Plainsboro Road 
Plainsboro , NJ , 08536


Similar Jobs you may be interested in ..