Network Security Engineer

Job Overview

Job Description

Job Overview:
The purpose of this job is to fulfill the Network Security Engineer position.
This is a hands-on position where the individual will be responsible for overseeing and managing the design and implementation of network security solutions.
In addition, this engineer will be responsible for providing 2nd- and 3rd-level support for all network security issues or outages.
Ensure the smooth operation of the infrastructure to provide maximum security, performance, and availability.
Maintain close vendor relationships to support current technology solutions and provide roadmap strategies for all security systems.
The candidate must also be flexible to work in 24x7 environments.
Responsibilities:
Design, build, and maintain Check Point and Fortinet firewall infrastructure.
Provide architecture, design, and implementation for all Internet and Extranet firewall connectivity to meet business and InfoSec requirements.
Manage projects related to implementing cybersecurity tools and products.
Support F5 LTM/GTM load balancers and reverse proxy with WAF configuration.
Manage McAfee Web Gateway proxy configuration, policies, and rulesets.
Build, configure, and support Pulse Secure SSL VPN.
Demonstrate strong knowledge of Citrix NetScaler Client configuration.
Conduct vulnerability scans and assessments of all network and security devices.
Manage and perform vulnerability remediation for all network and security devices, including software and hardware.
Create network topology diagrams and record details for troubleshooting purposes.
Perform other network security tasks as assigned.
Track and manage license status for renewal, upgrades, and compliance of all network security devices.
Demonstrate working knowledge of the Infoblox tool (IPAM).
Resolve operational incident tickets (P1/P2/P3) or service requests as per the agreed SLA.
Follow the required policies and procedures for incident, problem, and change management.
Minimum Qualifications:
Graduate or postgraduate degree in Computer Science or Information Technology (IT).
Preferred Qualifications/Skills:
Experience in enterprise network security.
Experience with Check Point, Fortinet firewalls, F5, etc.
Working experience with different Cisco platforms: ASR, Nexus, and Catalyst.
Knowledge of routing protocols: OSPF, EIGRP, and BGP.
Experience troubleshooting Layer 2 issues with a full understanding of STP.
Experience troubleshooting 802.1X/EAP and handling NAC-related issues.
Understanding of TCP/IP and UDP, and experience troubleshooting application issues using Wireshark and tcpdump.
Knowledge of McAfee Web Gateway.
Ability to add, modify, and delete entries in Infoblox DNS.
Experience with banking or e-commerce network security infrastructure.
Knowledge of ITIL, with integration across IPC (Incident, Problem, and Change Management).
Knowledge of NIST standards.
Strong analytical skills.
Prior experience in financial services or other highly regulated industries.
Strong working knowledge of security infrastructure and how these tools are used to maintain a strong security posture.
Capital markets domain knowledge is preferred.
Knowledge of Information Technology Infrastructure Library (ITIL), with integration across Incident, Problem, and Change (IPC) Management.
Knowledge of other products such as BMC Control-M (CM), Cross File Transfer (CFT), Connect:Direct, and NetBackup is preferred.
Basic understanding of IT infrastructure and troubleshooting.
Technical and system expertise in relevant IT workstreams.
Strong analytical and problem-solving skills.
Advanced troubleshooting skills, including the ability to address more complex issues that require a deeper understanding of systems and applications.
Specialized knowledge in specific areas that allows tackling intricate problems.
Ability to collaborate with L1 Support to provide guidance and share insights for ongoing issue resolution.
Strong problem-solving abilities, communication skills (written and verbal), time management, and team collaboration.
Ability to escalate to L3 Support in a timely manner when challenges require a higher level of expertise and/or experience.
Ability to effectively interact with stakeholders in the implementation of new functionality and in solving problems.
Strong communication skills (written and verbal).
Capability to coordinate and execute assigned projects. Basic understanding of IT infrastructure and troubleshooting.