Who we want :
Collaborative partners. People who build and leverage cross-functional relationships to bring together ideas, information, use cases, and industry analyses to develop best practices.
Detail-oriented process improvers. Critical thinkers who naturally see opportunities to develop and optimize work processes finding ways to simplify, standardize and automate.
Analytical problem solvers. People who go beyond just fixing to identify root causes, evaluate optimal solutions, and recommend comprehensive upgrades to prevent future issues.
Job Description :
The purpose of the Senior Engineer within the Network Segmentation discipline will assume direct accountability for the technical aspects of solution delivery activities related to changes in the data center network architecture, lifecycle management of devices, or customer projects.
This will include working closely with IT, Hosting and cloud Services teams, Application teams, and the Managed Service providers.
The role primarily supports the delivery of new capabilities and projects; however, the technical expertise of the role holder will also be used to help ensure operational reliability and address major incident.
This is accomplished through close coordination and oversight of the Managed Service provider responsible for the operation support.
This role will provide technical leadership for the Network Engineering team. Perform technical specification evaluations and make recommendations for the enterprise’s networks.
Networks encompass all areas of enterprise-wide connectivity which will include system configuration, troubleshooting, security, and resource monitoring to support the corporate business plan.
Provide solutions to customer problems.
What you will do :
Network segmentation design, planning, and implementation
Consultation with Application SMEs on network traffic and essential communications
Collaboration with Network Engineering resources to implement segmentation policies
Collaboration with Business Unit and Security on protocol risk
Segmentation agent deployment to server endpoints (Windows and Linux, virtual and physical)
Administration / ownership of segmentation product to include troubleshooting
Development of documentation, departmental procedures, and support guides
Automation of policy creation to build segmentation models and automate policy enforcement across on-premises data centers
Evaluate and test new vendor and in-house network initiatives for security issues
Mentor and evangelize security practices through cross functional work with engineering teams
Works on multiple projects as a technical lead and gathers and analyzes data and develops network security requirements.
Works on highly complex projects that require in-depth knowledge of one or more specialized platform areas such as network, security, applications, data, systems
Aligns network security strategy with business requirements and IT Strategy
Assists in the analysis, design, and development of a roadmap and implementation plan based upon a current vs future state
Analyzes the current network to identify risks and develop opportunities for improvements
Advises business and project stakeholders on options, risks, costs versus benefits, system impacts and technology priorities
Researches and evaluates emerging technology, industry and market trends to assist in projects and is aligned to IT and business strategies.
Assists in post-implementation continuous-improvement efforts to enhance performance and provide increased functionality
Support team member development by reviewing and analyzing complex infrastructure issues, communicating feedback to team members, sharing knowledge, responding to inquiries, and providing recommendations on best practices
Provide support for network security framework by responding to escalated issues, troubleshooting errors and developing technical solutions to ensure implementation of process improvements
Collaborate with key stakeholders by regularly communicating, clarifying technical solutions and supporting timely and efficient team operations by utilizing and sharing knowledge and expertise
Participate in and / or Conduct Incident Response Plan execution and revision as necessary to evolve the needs of the business.
Basic knowledge in Mobile and / or web application management and security assessments.
Comprehensive understanding of application (HTTP, SMB, etc.) and network (Ethernet, TCP / IP, etc.) protocols.
Thorough understanding of network protocols, covert channels, and encryption protocols (SSL, TLS, etc).
Monitors industry trends and threat landscape and recommend necessary controls or countermeasures.
What you need :
Minimum Bachelor’s Degree in Computer Science, Electrical Engineering or other relevant field of technology or equivalent work experience.
Current Cisco CCNP Security, PCNSE or equivalent professional certification.
ITIL v3 foundation or higher qualification desirable.
7+ years of experience in IS, with 3+ years of Security Engineer Role, within large organizations and / or global teams delivering successful projects or programs.
Certified in CCNP security, PCNSE, Security+, or some industry-recognized Security Certification preferred
Experience with ITIL process framework
Experience working as a Security Engineer within SOC 2, HIPAA, CJIS, or PCI compliance
Experience designing, implementing, supporting and maintaining enterprise firewalls and services.
Experience implementing NAC in a medium to large network
Demonstrated interpersonal, written, and verbal communication skills, specifically when dealing with internal and external customers and suppliers
Demonstrated ability to document complex technical issues and effectively summarize issues for a broad audience of technical and business managers
Experience with large to very large corporate computing environments, including businesses with multiple sites / locations
Experience with network capacity planning, disaster recovery, network security principles, and general network management best practices.
Physical & mental requirements :
Demonstrated ability to achieve objectives with little oversight and effectively prioritize tasks in a high-pressure dynamic environment
Demonstrated analytical and problem-solving abilities, keen attention to detail
Demonstrated customer service orientation
Experience and demonstrated success working in a global team-oriented, collaborative, virtual environment
Strong security mindset
Demonstrate the ability to analyze and determine root cause, develop remediation plans, and implement them.
Demonstrated interpersonal, written, and verbal communication skills
Demonstrated ability to conduct research into networking issues and products
Demonstrated ability to present ideas in user-friendly language
Aptitude to learn new skills and technologies to meet changing needs
Ability to peer review technical documentation prepared by colleagues
Ability to identify areas for improvement and be an ambassador for change.
Must be able to lift 25 lbs.