Network Security Engineer

Required Skills: ZIO , CISCO, ZTA , VPN

What You'll Be Doing

• Manage network security infrastructure including SASE, firewalls, VPNs, NAC and ZTA solutions

• Help maintain and advance Zero Trust Architecture adoption

• Help transition the company to Zero Trust Network Architecture

• Develop and implement network security policies and procedures

• Design and implement campus and datacenter macro & micro-segmentation policies

• Utilize automation tools and scripts to standardize deployment configurations and environments

• Monitor and analyze networks for potential security threats and vulnerabilities

• Develop and enforce best practice security standards, compliance, and governance

• Conduct external and internal security audits and assessments to identify potential risk and vulnerabilities in the network infrastructure adhering to industry standard cybersecurity frameworks

• Regularly review firewall, VPN, and web content filtering configuration and rules to ensure optimal efficiency and adherence to information security standards.

• Contribute in network and security support ticketing and provide timely resolution for end user issues

• Participate in an on-call rotation

Key Skills:

• 8 years of experience designing and implementing Gartner leader Zero Trust solutions

• 5 years of experience with Zscaler ZIA/ZPA solutions.

• Bachelor’s degree or equivalent work experience

• Experience with configuring and troubleshooting Cisco, Versa, and Aruba devices

• Strong experience with configuring and troubleshooting Palo Alto, Zscaler ZIA & ZPA and SASE solutions

• Proficient in network configuration management and automation tools (Python, Ansible)

• Familiar with RestAPI automation and configuration management secure coding

• Strong attention to details: Keen eye for detail and be able to identify potential vulnerabilities and threats

• Strong analytical and problem-solving skills

• Experience with MFA, SSO, SAML integration

• Certifications such as PCNSE, ZIA/ZPA, CISSP, CCDE, CEH, Security or equivalent work experience is a big plus

• Deep understanding of network security systems and protocols such as IPSec, IKE, GRE, TACACS, RADIUS, 802.1x, OSPF, DMVPN, BGP, SD-WAN

• Ability to work after hours to support projects and maintenance activities.

• Ability to create best practice secure environment diagrams and documentation

• Ability to quickly learn new or unfamiliar technology and products using documentation and internet resources.

• Strong verbal, written interpersonal and communication skills.

• Must be fluent in English

• Strong organizational skills with the ability to work on multiple projects and tasks

Bonus Qualifications

• Experience troubleshooting networking in Linux (RHEL, CentOS or Ubuntu)

• Cloud experience in GCP, Azure and AWS

• Experience with working in a global team environment and solving problems independently.

• Familiar with CIS Benchmark, STIG and/or NIST framework.

• Master’s degrees in Network or Computer Engineering, Computer Science, Cybersecurity