Network Security Engineer

8 نوفمبر، 2022

0 0 4 دقائق

الوصف الوظيفي

Project, configure, implement, and maintain all security platforms and any other related software, such as anti-virus, routers, Anti-SPAM, switches, intrusion detection or intrusion prevention, firewalls, cryptography systems, SIEM, and MDM .

• Configuring security policy of firewall based on secured recommendation policy of WEB, IPS , Application , Anti-Virus, WAF.

• Plan and appraise ongoing assessment of antivirus, application control, firewall, SIEM, VPN, SSL, intrusion detection or intrusion prevention and other network component policies

• Guarantee network security best practices are executed through auditing: router, change control, switch, firewall configurations, and monitoring

• Responsible for periodic vulnerability testing, and lead remediation projects

• Articulate systems and methodologies as well as reply to security-related events and support in remediation efforts

• Coordinate and oversee log analysis for company managed services offerings to ensure customer policy and security requirements are met

• Maintain network security devices to enable pro-active defense of networks within a managed service SOC environment, providing protective monitoring to multiple commercial customers

• Work under the direction of the Team Leader to maintain security devices and show practical experience in managing SIEM environments, firewalls, content filters, NIDS, proxy servers, HIPS, and packet capture devices

• Work with customers to form, fix appropriate policy, and signature rules. This comprises tuning and development of the creation of custom intrusion detection and SIEM signatures and rules, including the efficient on-boarding and understanding of varying customer log sources into SIEM environments

• Work in collaboration with appropriate stakeholders to ensure users have devices that are fully operational and secure

• Act under authorization from engineering to maintain the configuration and have a comprehensive understanding and technical know-how in server administration, including GPO deployment, patching, and network device configuration, and hardware management (including cable management)

• Work under strict change control processes to ensure only authorized changes are made to devices .

• Focusing on to complete of security GAP’s in Infra Structure of On-prem & Cloud based data center .

• Collaborate with sales, product management, engineering, and other departments on security-related items and any other duties as assigned by the firm.

• The Individual must possess the ability to analyze and understand a variety of existing and emerging business requirements, interface with technology engagement teams as a fully seasoned and proficient security solutions engineer, in providing best in class firewall/JPS/AV and web filtering solutions that align to meet customer requirements.

• Performing analysis of network security needs and contributes to design, integration, and installation of hardware and software

• Develop and document in restructure support policies and guidelines.

• Monitor trends and recommend future architecture strategies and road maps.

• Educate and mentor IT support staff as needed, including requisite training on technology and governance.

• Research and stay current on security best practices and function as a subject matter expert in this area.

الوصف الوظيفي

المهارات

. Hands-on knowledge with firewall products including Specifically, FortiGate / Fortinet

. Understanding of packet flow analysis using tools such as Wireshark

. Experience in cloud centralized Sophos Anti-Virus policy-based restrictions .

. Candidate will be a strong engineering minded individual with polished collaboration, written, and communication skills, a proven track record interacting with customers and technical team members in delivering best in class security solutions to our customers.

· Extensive technical know-how of security network devices (switches, antivirus, firewalls, cryptography, SIEM) and any other security networking hardware or software tools

· Minimum, three years’ experience identifying threats and developing appropriate protection measures

· Knowledge of Cisco ASA Firewall and strong routing & switching experience is an added advantage

· Reviewing system changes for security implications and recommending improvements

· Excellent hands-on experience and knowledge implementing, configuring, integrating, and supporting the network security with Checkpoint, F5 Load balancers, BigIP LTM, GTM, IPAM, Cisco ISE, Palo Alto, Juniper, BlueCoast security solutions, or Fortinet. (Not all are needed but the more you have, the more advantages you accrue in securing a job)

· CISCO, CCNP, CCNA, CCIE, CCSA, FCNSP, CISSP, SSCP, CEH, GIAC, Security +, OSCP, CompTIA Server+, MCSE, LPIC, CompTIA Cloud+, VCP, or CCSE qualified

· Knowledge of networking concepts such as WAN connectivity, transport types and protocols, and experience with wireless technology and Wireless deployment for a user base over 500 users per site

· Cisco orientated IOS understanding, working with Routers and Switch Platforms and Experience working with stakeholders at an Operational Level

· Good team player, Self-confident, motivated, and independent

· Excellent communication skills

· Bachelor’s degree or equivalent in information systems or Computer engineering/science

· Ability to remain calm while multi-tasking and working under pressure in a fast-paced environment

· Attention to details and good problem-solving skills.

Bachelor's degree. An additional 4 years can be accepted in lieu of a degree.
Expertise with Fo1iinet Firewalls.
4 years of networking experience.
4 years networksecurity experience.
Hands-on experience with Internet protocols, packet capture and analysis, SSH, TLS/SSL and vulnerability assessment tools.
Expertise in modifying firewall rule sets, troubleshooting issues by studying network traffic flows, lock down an application, troubleshooting firewall problems in a service provider environment under short time constraints involving complex network application flows between multiple hosts spanning multiple firewalls and different geographic locations.
Proven hands-on experience with firewalls and a comprehensive knowledge of IP networking and network security including encryption, IPSec, PKI, VPNs , MPLSN PN, Site to Site VPN tunnels, SSL/VPN, proxy services, and DNS.
Experience with Cisco routers and switches, and a good understanding of IP subnetting and routing such OSPF and BGP.
Familiar with industry standard security best practices (PCI, SOX, HIPAA)
Problem Solving – must be able to provide technical solutions to a wide range of complex difficult problems.
Self-Motivator possessing a high sense of urgency and high level of integrity.
Strong written and verbal communication, as well as organization and documentation skills