Network Secruity Engineer 80-95K+

Top financial firm seeks Network Security Engineer with extensive information security experience to design and troubleshoot complex networks and provide second level escalation support to the network operations team. Design and implementation of server lock-down schemes, firewalls, DMZs, network compartmentalization or security zones, network isolation, virus and worm defences, security monitoring, intrusion detections, and Internet security.  Configue and administer PIX, Nokia Checkpoint and Netscreen Firewall hardware/software, Cisco routers and switches (28xx, 37xx, 45xx, 65xx), VPN Concentrator's, and other related technologies. Great career opportunity with expanding firm. Hours are 12:00PM-8:00PM with some on call hours. Salary based upon skills and experience 80-95K+ bonus.

 

Requirments include: strong routing, switching, and security knowledge covering Firewall support, IDS/IPS, VPN Solutions, Security practices.  Strong demonstrated product knowledge is essential. Must have previous experience of working within large scale complex IT environments which include voice and data services.  CCNP certified, Network security certification  CISSP, CCSP, CSE preferred.

In summary expertise must include: Cisco hardware and configuration including IOS and CatOS, configuration and administration of PIX, Nokia Checkpoint and Netscreen Firewall hardware/software, configuration and administration of Cisco routers and switches (28xx, 37xx, 45xx, 65xx), configuration and administration of VPN Concentrator's, strong routing outing knowledge including design and troubleshooting experience (EIGRP, OSPF, BGP, IGMP, ICMP, PIM),  working knowledge of ISS Proventia, ISS Scanner, ISS Real Secure, SSL, Proxy servers, HPOV, SNMP, SSL VPN's, VOIP, Multicast, QOS, Ciscoworks, TACACS, Unix, and Windows platforms.  Ability to diagnose in-depth technical problems using associated tools (Sniffer, Network General, Niksun, Netscout, etc).  Experience in working in a 24x7 NOC/SOC environment is a strong plus.  Enterprise experience with the design and implementation of server lock-down schemes, firewalls, DMZs, network compartmentalization or security zones, network isolation, virus and worm defences, security monitoring, intrusion detections, Internet security. Maintaining all Firewall and Network related documentation, Syslog, configuration verification, health checks and incident response. Monitoring and reviewing all Security related logs. Syslog, Firewall logs, Proxy logs, IDS/IPS logs. This could also include User Authentication logs provided by any of the following services LDAP, AD, Radius and TACACS for any irregularities.  Provide support to the Network operations and project teams in all security related issues and technology. Strong understanding of VPN support (Client, Site-to-Site or clientless) and understanding of Security on Windows and Unix platforms. Setting and Auditing Compliance to Security Best Practice Standards for all device configurations including Routers, Switches, Firewalls, VPN devices, SSL Devices, and Proxy Servers.  Ability to communicate verbally, with the ability to prepare written reports for management level presentation. Performing Security Risk Assessments of any existing and future installations (OSI Transport Layer down to Physical Layer) and working knowledge of various security and audit assessment tools. Review project proposals with respect to security and operational risk.

 

For immediate consideration forward resume to careers@tsoc.net