Enterprise Firewall Architect/Cloud Security Architect

Job Title: Enterprise Firewall Architect/Cloud Security Architect

Location: Downey, CA

Duration: 6 Month Contract

Job Description:
Agreeya is Global integrator and seeking an Enterprise Firewall Architect/Cloud Security Architect.

Objective:

An Information Security Specialist interprets information security policies, standards and other requirements as they relate to internal information system and coordinates the implementation of these and other information security requirements. The Information Security Specialist redesigns and reengineers internal information handling processes so that information is appropriately protected from a wide variety of problems including unauthorized disclosure, unauthorized use, inappropriate modification, premature deletion, and unavailability. The Information Security Specialist will provide highly specialized experience in one or more information, computer, or network security disciplines (e.g. penetration testing, accreditation, or risk assessment and mitigation); develop system security plans, certification and accreditation reviews; analyze and establish processes for comprehensive systems and data protection; assess and mitigate system security threats and risks; perform security audits, evaluation, risk assessments and make a strategic recommendations; and manages, supports, installs and maintains security tools and systems, and tracks security patches and incidents.

Skills Required

The Information Security Specialist will possess knowledge and experience in standard methodologies used in certification and accreditation processes; extensive experience following NIST guidelines in risk assessment and management; conducting vulnerability analysis; developing mitigation plans; and performing penetration testing, password protection testing and application security testing.

Skills Preferred

Expertise in Cisco ASA, Cisco FirePower, and Palo Alto Networks. Expertise in Next-Generation Firewall (NGFW) capabilities, such as intrusion prevention systems (IPS), application control, and content filtering. Expertise in firewalls in cloud environments (AWS, Azure, Google Cloud Platform, OCI). Expertise in network protocols (TCP/IP, UDP, ICMP, etc.). Expertise in crafting, reviewing, and optimizing firewall rules and policies. Proficiency with firewall log analysis tools and SIEM platforms (Elastic Search, etc.). Proficiency with identifying, analyzing, and mitigating network threats. Proficiency with routing and switching (e.g., BGP, OSPF, VLANs). Proficiency with DNS, DHCP, NAT, and Site-to-Site VPN. Strong understanding of software-defined networking (SDN) and virtual firewalls. Strong understanding of cybersecurity frameworks like NIST and ISO 27001. Strong understanding of regulatory compliance requirements such as PCI DSS and HIPAA. Strong understanding of scripting languages such as Python, PowerShell, or Bash for automating firewall configurations and reporting.

Experience Required

This classification must have a minimum of five (5) years of experience applying security policies, standards, testing, modification and implementation. At least three (3) years of that experience must be in information security analysis.

Experience Preferred

- Three (3) years of experience within the last five (5) years in deploying and configuring firewalls in large-scale enterprise environments. - Three (3) years of experience within the last five (5) years in operating cloud-based firewalls and security groups in AWS, Azure, Google Cloud Platform, or OCI. - Three (3) years of experience within the last five (5) years in managing firewalls across multiple sites, including remote configurations. - Three (3) years of experience within the last five (5) years in designing, implementing, and optimizing firewall rule sets based on security best practices. - Two (2) years of experience within the last five (5) years in performing regular audits of firewall policies to reduce rule base complexity. - Two (2) years of experience within the last five (5) years in identifying, analyzing, and mitigating firewall-related issues during security incidents. - Three (3) years of experience within the last five (5) years in deploying hybrid or multi-cloud security architecture projects. - Two (2) years of experience within the last five (5) years in tuning firewalls for performance in high-bandwidth, low-latency environments.

Education Required

This classification requires the possession of a bachelor s degree in an IT-related or Engineering field. Additional qualifying experience may be substituted for the required education on a year-for-year basis.

About Us:
AgreeYa is a global systems integrator delivering competitive advantage for its customers through software, solutions, and services. Established in 1999, AgreeYa is headquartered in Folsom, California, with a global footprint and a team of more than 1,850 staff across offices. AgreeYa works with 500 organizations ranging from Fortune 100 firms to small and large businesses across industries such as Telecom, Banking, Financial Services & Insurance, Healthcare, Utility & Energy, Technology, Public sector, Pharma & Biotech, and others. Please visit us at Agreeya for more information.

AgreeYa is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, gender identity, sexual orientation, national origin, disability, veteran status or other protected characteristics. Visit our website to learn about our Career & Culture.