Techwish is seeking a Network Engineer for a long term contract engagement with one of it's esteemed clients in Manassas, VA. This is an onsite hybrid position that requires consultant to work 2 days from office.
Looking for:
Responsibilities: • Configure and manage enterprise-wide network DLP (Data Loss Protection) solutions to prevent unauthorized data exfiltration. • Fine-tune network DLP policies and rules based on data classification, sensitivity, and regulatory requirements. • Integrate Network DLP solutions with SIEM (Security Information and Event Management) systems for centralized security event monitoring and incident response. • Define and enforce network DLP policies and procedures in alignment with industry best practices and regulatory requirements. • Conduct regular network DLP audits and assessments to ensure compliance with data protection standards. • Configuration and deployment of ZTNA (Zero Trust Network Access) platforms in on-premises and cloud environments. • Development and implementation of network security strategies, aligning them with ZTNA principles and best practices. • Define and enforce access control policies based on user identity, device posture, and context. • Integration of ZTNA with existing security technologies like ICAM (Identity, Credentialing and Access Management), MFA (Multi Factor Authentication), and endpoint security solutions. • Perform regular network vulnerability assessments and penetration testing to identify weaknesses in ZTNA controls. • Experience configuring, deploying, and managing micro-segmentation solutions • Understanding of micro-segmentation integration with other security tools like SIEM and SOAR (Security Orchestration, Automation & Response). • Ensure compliance with industry standards and regulations. • Investigate complex security cases and propose response procedures. Work with senior Security Management Specialists to resolve/close security cases. • Support operational teams maintaining security infrastructure (intrusion detection, re?mote access security, email & web security, anti-malware, WAF)
Qualifications: • Bachelor's degree in Computer Science, Information Security, or a related field. • 5+ years of experience in network security with a strong focus on Network Security Engineering. • Deep understanding of TCP/IP, network protocols, routing, switching, firewalls, and network security technologies. • Extensive experience with DLP solutions • Expert knowledge of SASE, CASB, ZTNA, SWG technologies. • Extensive experience in WAF, OWASP Top10 • Familiarity with ICAM, MFA, endpoint security, and SIEM solutions. • Experience conducting security assessments, risk analyses, and developing security concepts. • Experience working with distributed teams. • Excellent communication skills, written and verbal. • Demonstrated ability to weigh business needs with security priorities and make sound risk-based judgment calls. • Relevant certifications like CISSP, CCNP Security, or GIAC certifications are highly desirable. • Excellent communication skills, written and verbally. • Demonstrated ability to weigh business needs with security priorities and make sound risk-based judgment calls.