Security Engineer

Job Role – Palo Alto Security Engineer

Location – Reston, VA (Remote)

Position Type: Contract

JD:

** This will be a 2 interview process. Second interview could be in person. It will be VERY Technical. They will be logging on to Palo Alto to perform tasks.

Mandatory skills highlighted below.

PURPOSE:

Develops and implements security solutions. Administers security technology systems by architecting and engineering/developing trusted systems into secure systems. Assists in the development of implementation and deployment plans that are aligned to the organizational strategic plan objectives and security requirements. Advises management in developing cybersecurity policies, processes, and procedures.

Required Skills:

• Demonstrated experience with Palo Alto firewall
• Demonstrated experience with F5 WAF and Illumio Microsegmentation
• Demonstrated expertise of TCP/IP fundamentals, IP sub netting, routing protocols (OSPF, BGP), and network management
• Demonstrated expertise of point-to-point, VPN, and other WAN connectivity options

Bonus Skills:

• Demonstrated experience with AWS security tools
• Demonstrated experience with Proofpoint Gateway (Email Security)
• Demonstrated experience with Splunk and Palo Alto SOAR

Responsibilities

• As a Senior Network Security Engineer, you will be responsible for operating and maintaining network security infrastructure to support mission-critical operations.
• Oversee security infrastructure sustainment, maintenance, and advanced configuration of security tools (Palo Alto firewalls, F5 WAF, Illumio, Proofpoint mail gateways, IDS, AWS, and other security tools).
• Respond quickly and effectively to network issues, outages, and change requests.
• Recommend and perform system maintenance on network and security hardware/software as required.
• Utilize network monitoring tools to proactively address capacity, performance, and availability issues before service degradation occurs.
• Create and implement automation to increase efficiency, deployment velocity and reduce errors.
• Participate in 24x7 on-call rotation.
• Providing mentoring for other engineers on equipment/software.
• Cross train in-house to share knowledge and share workload.

ESSENTIAL FUNCTIONS:

• 20% Assists with day-to-day support of security solutions.
• 20% Assists with engineering support and system administration of specialized cybersecurity solutions.
• 15% Solves complex problems and answers routine questions about the installation, operation, configuration, and customization of cybersecurity software.
• 15% Identifies potential conflicts with the implementation of any cybersecurity solutions.
• 10% Answers routine questions about the installation, operation, configuration, and customization of cybersecurity solutions.
• 10% Reviews and analyzes appropriate cybersecurity solution system logs for performance and functional anomalies.
• 10% Works with system design architects and project managers to provide security requirements.

Qualifications

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required.

Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Education Level: Bachelor's Degree

Education Details: Computer Science, Information Technology, or related field

Experience: 5 years relevant IT security experience

In Lieu of Education

In lieu of a Bachelor's degree, an additional 4 years of relevant work experience is required in addition to the required work experience.

Preferred Qualifications

• Knowledge, Skills and Abilities (KSAs)
• Ability to perform risk assessments and investigate cyber security incidents. , Advanced
• Ability to understand vulnerabilities at a technical level., Advanced
• Knowledge of hardware and software, networks, data centers, systems, and cyber security related issues. , Advanced
• Proficient in ethical hacking techniques., Proficient
• Strong critical thinking ability and investigative/problem solving skills., Advanced

The incumbent is required to immediately disclose any debarment, exclusion, or other event that makes them ineligible to perform work directly or indirectly on Federal health care programs. Must be able to effectively work in a fast-paced environment with frequently changing priorities, deadlines, and workloads that can be variable for long periods of time. Must be able to meet established deadlines and handle multiple customer service demands from internal and external customers, within set expectations for service excellence. Must be able to effectively communicate and provide positive customer service to every internal and external customer, including customers who may be demanding or otherwise challenging.

Licenses/Certifications

• CISSP Certified Information Systems Security Professional Upon Hire Req or
• CISM - Certified Information Security Manager Upon Hire Req or
• Certified Ethical Hacker (CEH) Upon Hire Req or
• Certified Information Systems Auditor (CISA) Upon Hire Req