Senior Information Network Security Engineer
Job Description: Client Information Security Team is seeking a network security expert to help maintain, manage, and deploy both current and new security appliances. The selected individual will help identify risk in both existing and new infrastructure. This position will also be required to perform many roles. These roles include vulnerability and risk management functions, incident response, hunt team, and firewall reviews.
ESSENTIAL JOB FUNCTIONS:
Communicates, presents, and discusses vulnerabilities with on-prem infrastructure teams, systems engineers, and cloud infrastructure teams.
Be the subject matter expert for cloud and network based security.
Ability to recommend or apply appropriate security controls.
Expert knowledge of networking technologies and firewall configurations.
Ability to apply security best practices to virtual private cloud (VPC).
Expert knowledge of network security best practices.
Knowledge and application of Terraform, Puppet, and Chef security best practices.
Ability to manually evaluate firewall logs and network infrastructure diagrams to identify security gaps.
Ability to use and configure tools such as Red Seal, Trend Deep Security, and Tenable Security Center.
Ability to identify misconfigurations in AWS security group settings.
Knowledge of SIEM products and big data related technologies such as AlienVault, Splunk, Logrythm, Hadoop, and Elk Stack are a plus.
Must demonstrate high technical aptitude and experience in Information/Cyber Security.
Must have a combination of PCI, HIPAA, HITRUST and/or SOX experience.
Ability and experience in working with Amazon and associated security applications
Basic understanding of telephony technologies, ie UCAAS, VoIP, Telco, MSO, Cloud and/or Hosting companies.
Experience and understanding of multiple security platforms and layers including Firewalls, Proxy servers, Intrusion Prevention Systems, Web Application Firewalls and Logging Correlation.
One or more of the following certifications is highly desired; CSSP, CISSP, CCSK, GSEC CCNA, or CCNA Cloud.
Bachelor of Science in a related field.
Must have excellent written and verbal communication skills and the ability to explain technical concepts to technical or non-technical personnel.
Ability to work a flexible schedule based on infrastructure change needs. This may include nights and weekends.
Ability to achieve tasks independently with little direction.
Key Technology Partners: AWS Waf and Shield, Cisco, Blue Coat, Palo Alto, Verisign, AlienVault, Elk Stack, Cloudfront, Cloudflare, RedSeal, Terraform, Puppet, Chef and Trend Deep Security.