Network Security Engineer – III

Security EngineerSecurity EngineerFull TimeRemoteTeam 1,001-5,000Since 1996H1B No SponsorCompany Site LinkedIn

Location

Alabama + 9 more

Posted

164 days ago

Salary

Not specified

Bachelor Degree4 yrs expExperience acceptedEnglishAWSAzureCloudDNSFirewallsGoogle Cloud PlatformJava ScriptLinuxPerlPythonRustSplunkTcp/ip

Job Description

• Focus primarily on network security (commercial and enterprise), vulnerability management and remote access management to build our Information Security ecosystem which can protect, detect and respond to threats and risks. • Determine and develop security architecture approaches and solutions. • Conduct business process reviews, document security requirements, and recommend how to proceed with implementation. • Develops requirements working with Project Delivery and Infrastructure to ensure that systems are placed within the relevant security zones based on the data they house and their purpose. • Assesses projects, including architectural, functional and detailed design specs to ensure security standards are met with a focus on Network Security best practices and standards. • Maintain, develop and tune our Security Information and Event Management platform (Splunk). • Perform Red Team/Blue Team adversary simulation activities. • Manages Security Orchestration Automation and Response (SOAR) to automate protective defenses against active attacks. • Develops architectural reference material to ensure that network security practices are being implemented in a repeatable fashion. • Identifies enhancements to IT tools, standards, and processes to reduce security vulnerabilities. • Participates or leads Incident Response activities. • Consults with Network Engineering team on security best practices and align with CISA guidance for Critical Infrastructure. • Complies with all security policies and procedures to ensure the highest level of system and data confidentiality, integrity and availability are maintained. • Attends relevant governance meetings. • Other duties as assigned.

Job Requirements

BS degree in Engineering, Computer Science, or Information Systems, preferred or equivalent work experience.
4 years of Network Engineering experience
CISSP, CCNA, GIAC, CEH, OSCP, GSEC, GPEN, GCIH (or similar) Certifications a plus
4 years of experience in information security engineering.
4 years overall Network architecture, design, development, deployment experience
Domain expertise in Network Engineering practices including: Secure device configuration management, Network inventory discovery, secure network protocol implementation (ie. TCP/IP, BGP, OSPF, DNS), network traffic anomaly detection, Distributed Denial of Service detection and mitigation, secure remote access technologies (ie. VPN, secure proxies, out of band management)
Domain knowledge in two or more of the following areas: SIEM (preferably Splunk), vulnerability management, SOAR, 2 programming or scripting languages (python, go, rust, PowerShell, bash scripting, etc.), detection engineering
Experience in configuring and managing firewalls, routers, switches, load balancers, VPN appliances, IDS/IPS systems and related networking/security protocols
Splunk development, maintenance and architecture experience is highly preferred
Hands-on understanding of networking technologies and protocols.
Experience in analyzing technical or security issues and making recommendations for corrective action
Thorough understanding of industry technology standards and trends for network and information security; familiarity with security vulnerability scanning tools and techniques
Strong understanding of information security and risk analysis processes (e.g. threat modeling, MITRE ATTACK framework, Kill Chain, etc.)
Ability to recommend network security architectures and components accomplishing long range objectives while simultaneously balancing functional requirements and budget constraints
Ability to establish relationships with business, IT leaders and technology subject matter experts with effective verbal and written communication skills appropriate for both technical and non-technical audiences
Ability to adapt quickly to changes within the enterprise and technological landscape
Ability to recommend Access Management design and definition specifically for networking components and devices.
Understanding of and ability to recommend Network device logging standards to allow for Information Security related detections.
Experience in large complex MSO organizations, video and cable industry experience a plus
Experience in ITIL, NIST, ISO and other infrastructure related frameworks
Strong technical background and experience with network and security solutions (Juniper, Arrista, Palo Alto Networks, Cisco, Arris/Motorola, F5 Networks, Splunk, Tenable, Sentinel One, Radware)
Preferred candidates will have experience with using SIEM solutions (Splunk, LogRhythm, RSA Security Analytics, Nitro ESM, etc.)
Experience in establishing and documenting standards, guidelines, and best practices
Strong analytical and problem-solving skills
Proficient with Microsoft Office
Experience with multiple operating systems (Windows, Linux, OSX, etc.) is a plus
Experience with scripting languages (Python, PowerShell, Perl, ASP, JavaScript, etc.)
Experience with cloud computing and cloud security for common cloud platforms AWS, GCP, Azure (or similar) is a plus

Benefits

Competitive Compensation (based on experience)
Annual merit increases and an annual bonus plan available – recruiter will share more!
Restricted stock grant
Medical, dental, and vision insurance
401k with a company match
Paid time off
Paid holidays
Tuition reimbursement
Significant discounts on broadband packages for employees residing in our service areas