Sr. IT Security Network Engineer

Sr. IT Security Network Engineer

Responsibilities:

• Maintaining LAN, WLAN, and architecture of the server as per the business policy
• Maintaining and managing Panorama and Palo Alto firewall configuration.
• Maintaining and managing Cisco FMC and Firepower FTD at local and remote sites.
• Maintaining and managing ForeScout and ISEpic configuration and security controls.
• Management of Global Protect VPN, GP Gateway configuration.
• Global Protect pre-logon configuration and integration and enrollment of Cisco DUO MFA.
• Certificate management of network devices and servers.
• Manage Nessus Tenable server and regular vulnerability scanning and remediation.
• Management of CIS Controls Self-Assessment Tool to implement security safeguards as per the recommended standard.
• Coordinating with external and internal teams for Penetration testing and remediation.
• Management and configuration of Cisco WLC, Client, and its access controls.
• DNS Management using Cisco Umbrella.
• Oversee the security posture of the company and proactively take measures to safeguard the network.
• Maintain company security scorecard and remediate vulnerabilities and risks reported by the scorecard.
• Management of DLP solution and egress security measurement in place across global offices.
• Maintain Privilege Access Management solutions such as CyberARK and monitor unauthorized privilege access.
• Knowledge of ISO standard of cybersecurity and exercise the measurement on IT security policies and standard procedures with audit readiness.
• As a precautionary measure, analyze and implement new security protocols for greater efficiency against any threat or malfunctions
• Implement a virus detection system beforehand for sound safety.
• Resolving the existing security issues including hardware malfunctions
• Tracking the vulnerable scripts to avert potential threats
• Generating and maintaining the VPN networks, Firewalls, web protocols, and Proofpoint email security.
• Reporting the security analysis of findings with other entities
• Investigations of Security breach alert
• Developing the security authentication protocol
• Maintaining & and implementing of the SOP for Network Security
• Supervising the installation of new software and hardware.
• Recommend modifications in legal, technical, and regulatory areas that affect IT security.
• Knowledge of performing routing protocols (MPLS, HAIPE/IP, QOS, and WAN)
• Monitoring of web security gateways, perimeter security, network access controls, endpoint security

Requirements:

• A Bachelor's Degree in Computer Science, Engineering, or a related technical discipline is desired. Alternatives to a technical degree are a combination of education, technical certifications or training, or work experience.
• Experience working on MPLS and TCP/IP networking projects and demonstrated experience with network security principles.
• Experience with planning, configuration, implementation, and maintenance of IP network products including routers, switches, wireless networking, VPNs, IDS/IPS, and Firewalls.
• Hands-on experience with one or more of the following operating systems - Cisco and Palo Alto network.
• Demonstrated experience with communications protocols such as IP, TCP, UDP, MPLS, OPSF, IGRP, BGP.
• Knowledge and experience with encryption products, methodologies, and configuration.
• Knowledge and experience with Network Vulnerability Scanner, Web Scanner, and Database Scanner.
• Experience with Network Management products
• Experience with Anonymous/Privacy Internet capabilities and supporting network architecture.
• Experience with ForeScout, Digital Client, and Cisco Firepower Certifications:
  • Certified Information Systems Security Professional (CISSP)
  • Cisco Certified Network Associate (CCNA), Cisco Certified Network
  • Palo Alto Networks Certified Network Security Engineer (PCNSE)
• Virtualized Platform (VMware) experience

#CB •

Last updated on Nov 7, 2023