You will not see any vendor names in the responsibilities listed below. We are more interested in aptitude and attitude, than specific OS experience. Let us know your history, but of more interest is your grasp of technical concepts, not specific user interfaces. We want team members who will take ownership of issues and drive them to resolution, not simply perform tasks as assigned. You will work with, and occasionally act as a subject matter expert (SME) on behalf of our customers, to ensure their projects and deployments succeed with appropriate security posture, in a timely manner. You must have a passion for learning new technologies, not simply working with what you already know. You will be provided with the tools to produce your own career success, but are expected to seize them and create that success. You will be challenged in a fast-paced environment, but success in handling these challenges will not go unnoticed or unrewarded.
Responsibilities: • You will be a key player on a team responsible for all aspects of Network Security for the client. You may be a SME in some domains, but are expected to have full professional knowledge of security concepts and company objectives to resolve a wide range of issues in effective and sometimes creative ways, in all of the following domains. As an advanced engineer, you are expected to do these things with little technical direction and with only general guidance on new assignments: • Firewalls and network filters, in both Enterprise, Stores, and cloud networks • Intrusion Prevention policies • Site-to-site and remote-access VPN connectivity • Network Access Control • Authentication, Authorization and Accounting (to include multi-factor authentication) • Web access proxy servers and URL filtering • DNS Security • Threat research, vulnerability remediation, and creation of compensating controls • Network Security policy creation, exception documentation and approval • Provide suggestions to team lead/manager in creating your professional development and training plan. • Prioritize taskings and projects assigned based on importance to accomplishment of business objectives. Occasionally assist junior teammates with maintaining proper prioritization. • Solve diverse and complex issues where analysis of situations and data requires in-depth evaluation of identifiable factors. Provide escalation support and technical guidance to teammates in areas where you are a SME. • Work on projects assigned to you, in effort to advance partnership opportunities between Network Security team and other business areas. • Work with senior engineers to define network security requirements for current and future state end-to-end architectures and platforms to advance security controls and the security posture of the business. • Assist senior engineers in collaborating with development and engineering teams to prioritize security risks, provide mitigation or remediation recommendations, and implement compensating controls. • Perform network security architecture and third-party risk management reviews. • Perform network security platform testing, vulnerability remediation, and operating system hardening to reduce attack surface. • Assist in performing proof-of-concept testing for network security solutions under consideration for purchase and implementation. • Assist in developing and maintaining network security policies, standards, processes and workflows. • Work with senior engineers in identifying network security products and technologies that can enhance the clients mission by providing appropriate protection for all data on the network, or sent or received to/from various public or private clouds, or the Internet at large.
Requirements:
Education/Experience • Bachelor's degree in related field, Master's preferred, or equivalent experience • 5 years of related experience with Bachelor's, 3 years with Master's
Must Have:
MUST HAVE experience deploying Palo Alto virtual firewalls in cloud settings
Nice to Have: • Must have: At least one entry-level vendor certification (with non-entry-level preferred) in the Network Security arena (Palo Alto PCNSA/PCNSE preferred, Cisco CCNA/CCNP Security, Juniper JNCIA-SEC/JNCIS-SEC, etc.) or equivalent experience • Preferred: At least one entry-level vendor-neutral certification in the Information Security arena (GICF, GSEC, CISA, CEH, etc.)Comments for Suppliers: