Network Security Engineer

SR. NETWORK/CYBERSECURITY ENGINEER

Location: Huntington Beach, CA

Purpose:

The Sr. Network/Cybersecurity Engineer has proficient knowledge of developing, maintaining, and troubleshooting all data networks. Ability to analyze, resolve, and report network issues and must be able to manage the proactive, operational, and reactive cybersecurity posture for enterprise. The ideal candidate will have excellent problem-solving skills along with a thorough understanding of network/security architecture and administration.

Essential Functions:

• Detect, diagnose, and troubleshoot LAN/WAN malfunctions
• Implement, manage, and maintain IPS/IDS to protect the organization from security breaches and cyber threats
• Configure and manage NAC systems to ensure secure access to the network by authorized endpoints
• Ensure Change Management and other procedures are followed
• Document network procedures and system configurations
• Install, maintain, and configure Cisco routers/switches, firewall, VPN, VLANs
• Maintain and configure Cisco VoIP phone system, and voice mail systems
• Monitor/Resolve LAN/WAN performance, health, and security issues
• Install, maintain, and configure all wireless networks
• Install, configure, and maintain all LAN/WAN hardware and cabling
• Participate in Network Operations planning
• Support all Administrators and developers as required
• Develop/test and analyze new technical solutions to problems
• Maintain current inventory of all Network assets, purchase history and warranty data
• Install, maintain, and configure all voice & data communication circuits
• Perform disaster recovery and testing of all network systems
• Perform backup and restores of network systems
• Implement policies to ensure the security and integrity of the network
• Hands-on technical expertise in the following:
• EDR/NDR/XDR solutions (e.g.: SentinelOne, Crowdstrike, Darktrace, ExtraHop, Carbon Black, Defender for Endpoint)
• Endpoint protection tools
• Web filtering solutions (Zscaler, Cisco WSA/Umbrella, etc)
• Perimeter defense solutions such as IPS, IDS, Email Gateways (e.g.: Proofpoint, Mimecast, etc)
• Privileged Access Management solutions (e.g.: CyberArk, Okta, etc)
• SIEM technologies (Cribl, Splunk Cloud/Enterprise, MS Sentinel, etc)

Basic Requirements:

• Bachelors’ Degree in IT or Computer Science preferred
• 8 years of IT experience
• Ethernet, TCP/IP, DHCP, DNS, Active Directory, VOIP
• Knowledge of IPS/IDS and NAC technologies and their implementation
• Cisco wired technologies, including switches, and routers
• Cisco wireless technologies, including WLC, AP, and CAPWAP
• Cisco Nexus switch for Data Center
• Palo Alto Panorama and Firewalls. Advanced networking on Palo Alto firewalls
• Cisco AnyConnect VPN
• Advanced knowledge of BGP, EIGRP
• Experience working with SolarWinds including IPAM and NMS modules
• F5 LTM load balancing. Knowledge of SSL termination offload
• Cloud vendor networking. AWS, GCP, and Azure
• Knowledge of Business Resumption Planning and Disaster Recovery
• Knowledge of ITIL service management concepts for incident, problem, and change management

Preferred Certifications and Skill sets

• Cisco CCNP / CCIE
• Palo Alto PCNSE
• CISSP
• CEH