Vacancy expired!
- 15+ years of experience Network Security Engineering
- (Specific technology not as important but PAN Next Gen Firewalls would be ideal)
- Experience designing architecture and presenting designs to leadership - - will also supplement team for hands on engineering work as well
- F5 (experience working on F5 in recent last 2-3 years)
- AWS
- Experience designing architecture for firewalls in cloud, load balancers in cloud, etc as well as hands on implementation.
- 10 years of IT engineering design and/or technical implementation, network, or IT operations experience
- BA or BS degree in Computer Science, Engineering, Business or related discipline or equivalent experience
- Experience with implementing and configuring Palo Alto next generation firewalls, F5 ADC
- Experience with configuring Palo Alto Global Protect VPN solution
- Experience with creating, running and maintaining cloud (AWS, Google Cloud, and Azure) network and security stack
- Experience with Wireshark, ANUE/IXIA
- 10+ years of strong network security experience
- Experience with developing, testing and maintaining REST based services and APIs
- CISSP or other industry standard network security certification
- Experience with encryption protocols
- Experience with firewall rule automation tools such as Tufin
- Experience with monitoring or syslog collection/analysis tools
- Experience in the Utility Industry and meeting audit requirements for NERC and WECC
- Experience with Cisco VSG or VMWare ESX firewalls
- Experience with Cloud-based solutions
- Experience with IDS/IPS
- Experience with Application Delivery Controllers (preferably F5)
- Experience or knowledge of DNS or DHCP
- Experience with web, middleware, or database servers
- Experience with Cyclades or other serial console terminal servers
- Demonstrated team player with strong and effective customer care skills
- Experience with Palo Alto Firewalls in highly available and hybrid cloud environments
- Experience with F5 Big-IP, Access Policy Manager (APM), Application Security Module (ASM), and Local Traffic Manager (LTM) including tmsh, writing/reading/modifying configurations, route domains, and vCMP on Viprion
- Understanding of network security concepts, including segmentation and defense-in-depth strategies
- Experience with automation using scripting languages (Python, Perl, Powershell, or similar)
- Ability to create VLANs, routes and configure network interfaces on switches, routers, and firewalls to facilitate the building of DMZs and create network segmentation
- Ability to troubleshoot, diagnose, and repair firewall issues
- Ability to troubleshoot and pinpoint network issues outside of firewalls
- Understanding of network concepts from layer 2 through 7 including NAT/PAT and application identification (Palo Alto AppID)
- Experience patching and maintaining firewalls in highly available network environments with minimal down time
- Ability to perform work while maintaining integrity and stability of network
- Ability to work with Architects, Solutions Engineers, and Project Managers to meet aggressive project deadlines.
- Familiar with network monitoring tools such as NetMRI, Netflow, and provide metrics in this area
- Available for 24x7 on call rotation (not likely to apply to this role but could be a possibility if needed)
- Install, configure, and maintain network security hardware, software, devices and appliances in support of “Client” on premise data centers and cloud deployments.
- Prepare network or infrastructure Visio topology diagrams, write Standard Operating Procedures and maintenance plans, and provide status reports as required.
- Participate in data calls and other operational and maintenance tasks.
- Assist with technical issues, project management, design, analysis, and implementation of network security solutions as needed.
- Develop and execute mitigation plans for technical issues.
- Prepare periodic maintenance plans and comply with change management procedures.
- Maintain detailed knowledge of company network and technology standards.
- Work closely with other IT groups to ensure systems are maintained in an efficient manner, and communicate all issues, changes, outages, and maintenance in accordance with processes, procedures, and policies.
- Responsible for technical support and administration of critical infrastructure network components (e.g., firewalls, wireless controllers, VPN, etc)
Vacancy expired!