For designing and administering security systems for organizational networks. A network security engineer protects systems from cyber threats, including bugs, malware, and hacking attempts
Must Have
A Bachelor's Degree in Computer Science, Engineering, or a related technical discipline is desired. Alternatives to a technical degree are a combination of education, technical certifications or training, or work experience.
· Experience working on MPLS and TCP/IP networking projects and demonstrated experience with network security principles.
· Experience with planning, configuration, implementation, and maintenance of IP network products including routers, switches, wireless networking, VPNs, IDS/IPS, and Firewalls.
· Hands-on experience with one or more of the following operating systems – Cisco, Fortinet and Palo Alto network.
· Demonstrated experience with communications protocols such as IP, TCP, UDP, MPLS, OPSF, IGRP, BGP.
· Knowledge and experience with encryption products, methodologies, and configuration.
· Knowledge and experience with Network Vulnerability Scanner, Web Scanner, and Database Scanner.
· Experience with Network Management products
· Experience with Anonymous/Privacy Internet capabilities and supporting network architecture.
Certifications
· Certified Information Systems Security Professional (CISSP)
· Cisco Certified Network Associate (CCNA), Cisco Certified Network Professional (CCNP)
· Palo Alto Networks Certified Network Security Engineer (PCNSE)
· Virtualized Platform (VMware) experience
Responsibilities
· Maintaining LAN, WLAN, and architecture of the server as per the business policy
· Maintaining and managing Panorama and Palo Alto firewall configuration.
· Maintaining and managing Cisco FMC and Firepower FTD at local and remote sites.
· Maintaining and managing FortiNAC and ISE configuration and security controls.
· Certificate management of network devices and servers.
· Coordinating with external and internal teams for Penetration testing and remediation.
· Management and configuration of Cisco WLC, Client, and its access controls.
· DNS Management using Cisco Umbrella.
· Oversee the security posture of the company and proactively take measures to safeguard the network.
· Maintain company security scorecard and remediate vulnerabilities and risks reported by the scorecard.
· Management of DLP solution and egress security measurement in place across global offices.
· Maintain Privilege Access Management solutions such as Symantec PAM and monitor unauthorized privilege access.
· Knowledge of ISO standard of cybersecurity and exercise the measurement on IT security policies and standard procedures with audit readiness.
· As a precautionary measure, analyze and implement new security protocols for greater efficiency against any threat or malfunctions
· Implement a virus detection system beforehand for sound safety.
· Resolving the existing security issues including hardware malfunctions
· Tracking the vulnerable scripts to avert potential threats
· Generating and maintaining the VPN networks, Firewalls, web protocols, and Proofpoint email security.
· Reporting the security analysis of findings with other entities
· Investigations of Security breach alert
· Developing the security authentication protocol
· Supervising the installation of new software and hardware.
· Recommend modifications in legal, technical, and regulatory areas that affect IT security.
· Knowledge of performing routing protocols (MPLS, QOS, and SD-WAN)
· Monitoring of web security gateways, perimeter security, network access controls, endpoint security
