Network Security Engineer with AWS

Waltham, MA Waltham MA 02454

Date : Sep-30-21

Waltham, MA

Sep-30-21

Work Authorization

US Citizen
GC
H1B
GC EAD, L2 EAD, H4 EAD, TN EAD

Preferred Employment

Corp-Corp
W2-Permanent
W2-Contract
1099-Contract
Contract to Hire

Job Details

Experience

Architect

Rate/Salary ($)

$70/hr

Duration

12 months

Sp. Area

Others

Sp. Skills

Others

Consulting / Contract

Required Skills :

Security, FireWall, DevOps, TCP/IP

Preferred Skills :

AWS Security, 3rd party security products

Domain :

Work Authorization

US Citizen
GC
GC EAD, L2 EAD, H4 EAD, TN EAD
H1B

Preferred Employment

Corp-Corp
W2-Permanent
W2-Contract
1099-Contract
Contract to Hire

Job Details

Experience

Architect

Rate/Salary ($)

$70/hr

Duration

12 months

Sp. Area

Others

Sp. Skills

Others

Consulting / Contract

Required Skills :

Security, FireWall, DevOps, TCP/IP

Preferred Skills :

AWS Security, 3rd party security products

Domain :

Nityo Infotech
Plainsboro, NJ
Post Resume to
View Contact Details &
Apply for Job

Job Description :

Network Security Engineer
Location: Waltham, MA / Atlanta, GA
Duration: Long Term.
Rate : $70-75/-

Five or more years of experience as hands-on security architect/engineer in a large scale regulated enterprise customer environment or professional services consulting engagement(s) of a similar scope
An active contributor to architecture, design and implementation of multi-account/inter-region AWS solutions with scalable security and compliance controls centered around (but not limited to) network plane
An opinionated practitioner of AWS Well-Architected Framework with emphasis on the 'Security' pillar, knowledgeable and experienced with common Cloud reference architectures (past, current and future states), security standards, best practices, control frameworks and an eye towards simplification
Mastery of AWS native SDN instrumentation (VPC, SGs, ACLs, PrivateLink, etc) and management of advanced network topologies (hub-and-spoke, elastic micro-segmentation, peering, static and dynamic routing, encapsulation, VPN, TGW, public and private endpoints, etc) spanning across account boundaries
In-depth understanding of TCP/IP networking and wide range of AWS tools, services (i.e. Route53,) and mechanisms (e.g. SCPs, resource level policies, etc). to implement security around these protocols and common integration points with on-prem data center environments including various connectivity options AWS provides
Experience with and understanding of core network security functions such as L3/4 stateful firewalls, WAF, IDS/IPS, DDoS, packet inspection, auditing and logging as well as adjacent domains for AWS and partner ecosystems defending against common threat models
Knowledge and hands-on experience with end-to-end multi-hop implementations of data in transit encryption solutions (TLS, termination and certificate management, PKI, advanced load balancer configuration options, resource/service side encryption controls)
A working knowledge and understanding of recent additions to the product line (Network Firewall, FMS, Traffic Mirroring, Ingress, GWLB, IRSA, SGs for Pods, etc) as well as roadmap for AWS security services and features
Hands on experience and ability to express the desired state via declarative IaC tools such as CFN or TF, or via higher level abstractions such as CDK and familiarity with the associated DevOps practices aimed at producing repeatable and fully automated solutions
Familiarity with L7 communications patterns and advanced security solutions such as service meshes and mTLS for containerized (EKS) and other workloads
Hands-on experience with 3rd party security products (L3/4 next gen firewalls, WAFs, forward and reverse proxies)
AWS Security/Network Specialty and/or Architect Pro Certifications
Recognized Information Security Industry Certification

,
Raghavan Arulalan.
Sr. Technical Recruiter
Nityo Infotech Corp.
Suite 1285, 666 Plainsboro Road
Plainsboro , NJ , 08536
Mail: