This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.

Role Description

BAE's Cyber Security Engineering Team is searching for a Senior Security Engineer to assist in managing the Palo Alto firewall suite within our security team. Responsible for providing appropriate security development and support of tools and its services to enable the GSOC to utilize the state-of-the-art security tools and methods. Linux and Windows administration. Must have strong Palo Alto and Web Filt Admin experience.

• Administer Palo Alto firewalls using Panorama including but not limited to, object and rule creation, evaluation of firewall logs, network troubleshooting, and firewall configuration.
• A deep understanding of firewall deployment best practice such as, rule order and placement, port versus application based rules and when to deploy them, and rule or log analysis to improve firewall policy performance.
• Administer Web filter policies including but not limited to, adding/modifying white lists, setting up and evaluating connection traces, configuration and evaluation of rule traces, and other activities required for day-to-day support and incident troubleshooting.
• Provide security application support, including the development of automated scripts and protocols for seamless application-server interaction.
• Develop documentation as required (such as installation and Visio network and cabling diagrams, configuration guides, user tutorials, user and system requirements specification documentation, use cases, traceability matrices).
• Research, prototype and implement new security related technology solutions.
• Provide back up support to other engineers with enterprise tools. This may involve learning new tools and/or software solutions while working closely with other team members.
• Working hand-in-hand with our 24/7 GSOC to support their needs.
• Responding to and successfully triaging user requests via the phone, email or the incident management system.
• Analyzing network traffic patterns, security requirements, future growth requirements, feasibility for virtualization, resource requirements, risk mitigation, functional analysis, interface systems analysis, technical assessments, technology benchmarking, enterprise architecture analysis, and requirement analysis.

Qualifications

• Bachelor's Degree in a relevant field and 6 years of work experience, or equivalent experience
• Strong understanding of networking protocols, including DNS, TCP/IP, and other common transport protocols
• Solid grasp of networking and security principles
• Experience implementing firewall technologies from vendors such as Palo Alto, Cisco ASA, Check Point, or Juniper SRX
• Firewall policy development, implementation, and management experience
• Firewall configuration and deployment experience, including:
• Network configuration (e.g., VLANs, subnets)
• Routing configuration (e.g., static routes, OSPF)
• Rule configuration (e.g., access control lists, security policies)
• Industry-recognized certifications, such as Security+, Network+, Palo Alto Networks, or CISCO

Benefits

• Health, dental, and vision insurance
• Health savings accounts
• 401(k) savings plan
• Disability coverage
• Life and accident insurance
• Employee assistance program
• Legal plan
• Discounts on home, auto, and pet insurance
• Paid time off and paid holidays
• Other types of leave, including paid parental, military, bereavement, and applicable federal and state sick leave
• Company recognition program for monetary or non-monetary recognition awards