Vacancy expired!
Network and Security Engineer Contract-to-hire. NYC, NY (Onsite role) Position Overview: This is a temp to hire role responsible for implementation of network and security infrastructure projects, as well as administration of the company's network, telephony and security infrastructure. This opportunity has an initial 6 months consulting term. However, a successful candidate demonstrating effective management and delivery of assigned projects as well as professional integration with the Infrastructure team, will be strongly considered for conversion to permanent team member. The Network is comprised of the Corporate WAN as well as all Retail locations and other corporate satellites within an MPLS network topology across Americas. This job's responsibilities are as follows:
- Design and Implement a multilayered security defense and posturing.
- Setup multi-tiered and zone firewall composing of Palo Alto, Checkpoint and Cisco physical and virtual firewalls
- Review and implement firewall policies rules using appropriate zone level trust model
- Design and implement network infrastructure technology
- Configure and setup Cisco network core infrastructure consisting of Cisco Nexus switches, Cisco ISR routers, Cisco WLS and wireless controllers and Cisco ISE authentication servers
- Administer Cisco VOIP technology to include Cisco Call manager, SIP cube and Cisco IPCC.
- Define, track, and maintain appropriate standard baselines and configuration sets of all managed and/or monitored security devices and implement industry best practices with regards to IT Security controls such as:
- Security Architecture and engineering, Firewalls, Intrusion Detection/Prevention Systems (IDS/IPS),
- Work with and manage projects that involve different functional teams as well address daily operational tasks.
- Setup ASA VPN gateway in HA configuration.
- Configure AnyConnect posturing in conjunction with Cisco ISE
- Plan the migration to new platform
- Setup two Cisco ISE clusters
- Configure NAC policies for WiFi and LAN networks
- Setup ISE posture policies for VPN access
- Setup new Cisco WLC
- Develop NAC policies in conjunction with Cisco ISE
- Migrate exiting WAPs from legacy Cisco WLC to the new Cisco WLC virtual edition
- Review exiting firewall rules in the DMZ, LAN and WAN zones and design an overall policy hierarchy and flow.
- Implement hardening security posturing.
- Document firewall policies, rules and flows.
- Align setup with company standards.
- Coordinate migration of SDWAN to store locations
- Work with vendors to setup edge devices
- Configure headend connection and routing
- Review network infrastructure and draft diagrams
- Document key network infrastructure information
- Develop support procedures
- Dedication to outstanding level of service
- Understand Incident, Problem and Change Management processes
- Fundamental oral and written communication skills
- Advanced troubleshooting skills and able adapt effective solutions.
- Drafting technical documentation and diagrams related to network and security infrastructure
- Expert experience with Palo Alto technology and firewall policy designs.
- Expert experience in configuring Cisco networking devices such as Cisco Nexus, Cisco ISR routers, Cisco WLC and Cisco Firepower firewalls.
- Experienced in implementing routing protocols such as BGP, OSPF and EIGRP.
- B.A. or equivalent experience
- CCNP (Cisco Certified Network Professional)
- Palo Alto certification is plus
Vacancy expired!