Senior Security Engineer

Responsibilities 

• Firewall management (e.g. DMZ, Internet, Third Party connections), specifically for Next Generation Firewalls
• Maintenance of IPAM
• Maintenance of remote access tools
• Support enterprise incidents
• Researches emerging threats and vulnerabilities to aid in the identification of network incidents
• Analyzes data from threat and vulnerability feeds and analyzes data for applicability to the client’s organization
• Ensures compliance with all applicable configuration standards
• Recommends security controls and/or corrective actions for mitigating technical and business risk
• Produces vulnerability, configuration, and coverage metrics and reporting to demonstrate assessment coverage and remediation effectiveness
• Provision and management of multi-factor authentication (e.g., token, certificate) 
• Malicious code detection and prevention, and Internet monitoring (e.g. IDS/IPS) 
• Security policy verification 
• Tiered web filtering (e.g., URL filtering, malicious sites, spyware, advertisements, instant messaging, free software downloads) 
• Internet usage reporting 
• Provision, installation, configuration, management, and maintenance of network intrusion detection and prevention sensors at specified network entry points 
• Intrusion Incident reporting 
• Ongoing vulnerability assessment and remediation activities 
• Support of Third Party security assessment, scanning and penetration testing 
• Design, implementation, management and maintenance of encryption solutions 
• Management of Client-owned security certificates, SSLs and domain names; where applicable 
• Logging, tracking and management of security risks and issues to Resolution and closure 
• Network security Services reporting per Client requirements 
• Remediation of discovered security risks from any security audit findings

 

 

Qualifications 

·         BS in Computer Science, Information Security, or a related field is highly desirable 

·         7+ years of work experience in information security, especially in a network security Engineer role 

·         Preferred Certification - CSA+, CISSP, GIAC, PCNSA, PCNSE, PCDRA

 

Competencies Required  

• Experience with NGFW, specifically with Palo Alto and Panorama
• Experience managing Infoblox
• Technical expertise in analyzing threat event data, evaluating malicious activity, documenting unusual files and data, and identifying tactics, techniques and procedures used by attackers 
• Technical expertise in system security vulnerabilities and remediation techniques, network and web-related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, etc.) 
• Technical and troubleshooting expertise in security engineering, system and network security, authentication and security protocols
• Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one 
• An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business 
• An understanding of organizational mission, values, and goals and consistent application of this knowledge 
• ISO 2700 Awareness