Job Details

ID #44645247
State New York
City Newyorkcity
Job type Contract
Salary USD $Negotiable Negotiable
Source Cortex Consultants
Showed 2022-08-06
Date 2022-08-06
Deadline 2022-10-05
Category Et cetera
Create resume

Network and Security Engineer

New York, Newyorkcity, 10001 Newyorkcity USA

Vacancy expired!

Network and Security Engineer Contract-to-hire. NYC, NY (Onsite role) Position Overview: This is a temp to hire role responsible for implementation of network and security infrastructure projects, as well as administration of the company's network, telephony and security infrastructure. This opportunity has an initial 6 months consulting term. However, a successful candidate demonstrating effective management and delivery of assigned projects as well as professional integration with the Infrastructure team, will be strongly considered for conversion to permanent team member. The Network is comprised of the Corporate WAN as well as all Retail locations and other corporate satellites within an MPLS network topology across Americas. This job's responsibilities are as follows:

  • Design and Implement a multilayered security defense and posturing.
  • Setup multi-tiered and zone firewall composing of Palo Alto, Checkpoint and Cisco physical and virtual firewalls
  • Review and implement firewall policies rules using appropriate zone level trust model
  • Design and implement network infrastructure technology
  • Configure and setup Cisco network core infrastructure consisting of Cisco Nexus switches, Cisco ISR routers, Cisco WLS and wireless controllers and Cisco ISE authentication servers
  • Administer Cisco VOIP technology to include Cisco Call manager, SIP cube and Cisco IPCC.
  • Define, track, and maintain appropriate standard baselines and configuration sets of all managed and/or monitored security devices and implement industry best practices with regards to IT Security controls such as:
  • Security Architecture and engineering, Firewalls, Intrusion Detection/Prevention Systems (IDS/IPS),
  • Work with and manage projects that involve different functional teams as well address daily operational tasks.
Technical Project assignments: The NetSec engineer will be responsible of leading and implementing the following projects: Deploy Cisco Any-connect VPN
  • Setup ASA VPN gateway in HA configuration.
  • Configure AnyConnect posturing in conjunction with Cisco ISE
  • Plan the migration to new platform
Setup Cisco ISE
  • Setup two Cisco ISE clusters
  • Configure NAC policies for WiFi and LAN networks
  • Setup ISE posture policies for VPN access
Cisco WLC migration
  • Setup new Cisco WLC
  • Develop NAC policies in conjunction with Cisco ISE
  • Migrate exiting WAPs from legacy Cisco WLC to the new Cisco WLC virtual edition
Audit and redesign Palo Alto firewall rules and polies
  • Review exiting firewall rules in the DMZ, LAN and WAN zones and design an overall policy hierarchy and flow.
  • Implement hardening security posturing.
  • Document firewall policies, rules and flows.
  • Align setup with company standards.
SDWAN migration
  • Coordinate migration of SDWAN to store locations
  • Work with vendors to setup edge devices
  • Configure headend connection and routing
Documentation
  • Review network infrastructure and draft diagrams
  • Document key network infrastructure information
  • Develop support procedures
Expected functional responsibilities will comprise the role workload as follows: Job Function % of Time Assess and improve existing WAN landscape and infrastructure 30% Assess and improve existing security technology and platforms 30% Audit and alignments of security device configuration to comply with group standards 20% Manage and document all audit relevant changes to the network, as they are security relevant. This includes proper user right setup and documentation. 10% Management of existing network and security devices 10% Supervisory Responsibility Yes No X List positions that report to this job Over time, the Network Security Engineer may be responsible for managing external and matrixed internal resources supporting System Administration and Infrastructure Management. Budget Responsibility (Payroll and Department Budgets) Yes No X Indicate financial responsibility below The Network Security Engineer will assist with budgeting related to network upgrades, security investments and upgrades, implementation, and maintenance. Decision Making Responsibility Yes X No List examples of decisions the employee will be responsible for making independently. Hiring and staffing, operational functions, policy, strategy This role will have extensive input on technical and architectural decision as well as staffing, vendor selection, and all components that are part of the WAN network and its security. Required Experience:
  • Dedication to outstanding level of service
  • Understand Incident, Problem and Change Management processes
  • Fundamental oral and written communication skills
  • Advanced troubleshooting skills and able adapt effective solutions.
  • Drafting technical documentation and diagrams related to network and security infrastructure
  • Expert experience with Palo Alto technology and firewall policy designs.
  • Expert experience in configuring Cisco networking devices such as Cisco Nexus, Cisco ISR routers, Cisco WLC and Cisco Firepower firewalls.
  • Experienced in implementing routing protocols such as BGP, OSPF and EIGRP.
Minimum Education and Certification Required:
  • B.A. or equivalent experience
  • CCNP (Cisco Certified Network Professional)
  • Palo Alto certification is plus
Minimum Years Experience Required: 7-10 years in a related field

Vacancy expired!

Subscribe Report job