Responsibilities:

• Primary for Check Point firewall policy design and implementation including new buildouts and major upgrades to the enterprise firewalls.
• Hands-on configuration, maintenance, and design of security solutions with security platforms like IDS/IPS, SEIMs, and Endpoint protection.
• Work closely with the Managed Security Solution Provider (MSSP) to maximize the utilization of the IDS/IPS and SIEM tools.
• Monitor systems for security incidents and vulnerabilities by developing robust monitoring and visibility capabilities and respond/report on incidents and vulnerabilities.
• Identify external threats such as DDoS, spoofing, brute-force, or man in the middle attacks.
• Effectively assess and communicate risks and appropriate levels of urgency to management and engineering staff.
• Flexibility to work evenings and weekends as needed. Regular on call rotation will be required.
• Foster a positive team environment, driving standards, collaboration, quality, and continuous improvement.
• Build and maintain successful relationships with internal business partners, Technology Team and vendors.

Qualifications, Capabilities and Skills Required:

• 10 years of relevant cybersecurity network experience
• Hands-on experience with the following network security technologies.
  • Check Point Firewalls, Web Application Firewalls
  • Network IDS/IPS Solutions
  • Strong authentication methods
  • Cloud Security (AWS and/or Azure)
  • IPSec and TLS based VPNs
  • TCP, UDP protocols and vulnerabilities
  • Logging and alerting with SIEMs
• Working knowledge of network design, i.e. subnets, VPNs, VLANS, network segmentation.
• Excellent organizational, verbal, and written communication skills.
• Experience in building and maintaining security systems that are both on-prem and in the cloud.

Qualifications, Capabilities and Skills Preferred:

• Advanced certifications in network engineering is highly preferred.
• Advanced certifications in Information Security like CISSP, CEH or other industry recognized certification is highly preferred.
• Working experience with modern authentication and working knowledge of network encryption and vulnerabilities.
• Experience in conducting research and reporting using SIEMs
• Experience working in a highly regulated environment.