IZN1507 Senior Network Security Engineer

Twitter Facebook
Burlington, VT
Job Type
Direct Hire
Aug 11, 2017
Job ID
Senior Network Security Engineer
Burlington, Vermont
Clearance: Clearable US Citizen 

Our great client is a leading provider of cloud managed services, agile software development, DevOps, systems engineering, and IT service management.  We work collaboratively with our customers to solve their biggest challenges through a commitment to delivering innovation, agility, and maximum value. Our employees are empowered to think outside of the box and provide innovative solutions to our customers and provide measurable cost savings.

Position Description: 
We are working to grow our team for an important mission with one of our federal government clients, when you join you will be part of an important and exciting mission that provides information technology expertise, strategic vision and tactical implementations using frameworks that require cloud services that are virtualized, scalable, cost effective and that utilize DevOps practices.  
The successful candidate is one who has had repeated success commanding respect as an articulate, creative problem solver comfortable acting as a trusted advisor and thought leader to senior Government customers, giving them expert advice on technical tradeoffs and risks, as well as designing technical solutions and commanding the respect of the highly technical engineers who will implement the solutions. 
  • Provide Tier IV troubleshooting expertise for critical for network security issues.  Provide Root Cause Analysis (RCA) Reports.
  • Use technical knowledge of current attacks to identify flaws and weaknesses in the composition and design of networks, remote access schemes, systems and applications to specify solutions, verify the solutions that have been implemented, and rapidly adjust designs based on new threat and attack information as acquired. 
  • Prepare and maintain security operating procedures and associated documentation.
  • Works with technology teams on placement and configuration of key monitoring and prevention tools.
  • Enhance existing design and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members.
  •  Determine security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; when needed preparing cost estimates.
  • Plans security systems by evaluating network and security technologies; developing requirements for applications, OS, data in motion and data at rest; designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; adhering to industry standards.
  • Writes clear requirements and implementation guidelines for the implementation engineers.
  • Documents the design and follows the review process for a solution description document.
  • Verifies security systems by developing and implementing test scripts.
  • Maintains security posture by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs.
  • Prepares system security reports by collecting, analyzing, and summarizing data and trends.
  • Minimum 7 - 10 years of experience designing, deploying, configuring, supporting, troubleshooting, debugging and administering Network Security Products (Firewalls, Proxy, IDS/IPS, Load balancers, etc)
  • 3+ years’ experience working with cloud based infrastructures (AWS & Azure)
  • Expert knowledge of the IP protocol suite
  • Extensive experience with the following technologies BGP, iWAN, DMVPN, EIGRP, MPLS, VRF, QoS, PBR, VSS, HSRP, STP, Cisco Meraki stack, WAN Optimization technologies and Cisco Nexus
  • Experience designing and implementing 802.1x based systems
  • Experience with Cisco enterprise wireless networking and design.
  • Experience designing, implementing and supporting on premise and hosted data centers as well as cloud connected data centers.
  • Exceptional written and verbal communication skills.
  • Solid understanding of industry-standard network design principals and best practices
  • Ability to document solutions with MS Office suite: specifically, Word, Excel, Visio, and Project
  • Ability to effectively communicate, verbally and in writing, with management and peers
  • Strong analytical and troubleshooting skills
  • Ability to handle critical customer issues/problems
  • Able to determine problems and deliver known solutions with a high level of customer satisfaction
  • Ability to determine root cause and resolution for previously unknown problems
  • Works on problems of moderate to wide scope and moderate to high complexity where analysis of situations or data requires a review of identifiable factors
  • Good verbal communication skills
  • Ability to analyze, use and configure large enterprise networks
  • Proven crisis management skills
  • Understanding of malware, emerging threats, attacks, and vulnerability management
  • Solid understanding of TCP/IP and networking concepts
  • Solid understanding of Operating system security concepts
  • Ability to work in a fast-paced, support team environment
  • Ability to present complex solutions and methods to general community
  • Experience with Cyber Security Standards (e.g. NIST SP 800-53, ISO 270001, etc.)
  • Experience with securing virtualized datacenter environments
Desired Qualifications:                        
  • Experience using Solarwinds, Cisco Prime Infrastructure, Cisco ISE, Cisco UCS / Flexpod, Cisco CloudCenter, Cisco UCS Director, VMware virtual networking, Infoblox, Splunk, Riverbed Steelhead and Riverbed NetProfiler.
  • Experience with automation and orchestration tools.
  • Experience working in a DevOps environment.
  • Experience implementing, integrating, operating, and maintaining a large enterprise infrastructure.
  • Class security devices and software (e.g., IPS, IDS, Cisco Stealthwatch, Cisco ASA, Cisco FirePower stack)
  • (CISSP) preferred but not mandatory
  • Bachelor’s Degree in Computer Science, preferred
  • CISSP (CISSP:ISSAP is a plus), GIAC, or similar certification
  • Master’s Degree and/or 15+ years’ experience