Sr. Managed Services Engineer - Security

JOB OPPORTUNITY

CDW Technologies LLC

Vernon Hills, Illinois

Sr. Managed Services Engineer – Security

This notice is being provided as a result of the filing of an Application for Permanent Employment Certification (ETA Form 9089). The employer intends to permanently employ a foreign national in the job opportunity described below. Any person may provide documentary evidence bearing on the application to the Certifying Officer of the U.S. Department of Labor. The address of the Certifying Officer is as follows: U.S. Department of Labor, Employment and Training Administration, Office of Foreign Labor Certification, 200 Constitution Avenue NW, Room N-5311, Washington, DC 20210.

This notice will be posted between 30 and 180 days before filing the permanent labor certification application.

The Sr. Managed Services Engineer – Security is responsible for the development and delivery of Managed Services offerings, applying technical breadth to provide top level technical support services and operational leadership, including problem resolution and technical change implementation for Managed Services clients with a focus on network security. Specific duties include:

Conduct/lead technical design workshops for complex network designs to meet customer, business and technical objectives.

Proactively develop network security plans and activities to avoid problems and minimize security risks.

Educate the customer on technical solution as appropriate throughout the life of the network project or service life.

Perform scopes of work as detailed in implementation plans assigned including system builds, test plans, documentation, and training.

Assist with client consultation including assessing and recommending architectural designs/changes to client systems in response to performance issues, growth requirements, etc.

Troubleshoot and develop internal security systems.

Test, evaluate, and develop new security products, offerings, and solutions.

Communicate with Engineering Manager all events that are not anticipated (new product requirements, equipment failure, design changes, schedule changes).

Conduct training of customers and coworkers in both formal and informal environments.

Provide network security engineering support to Service Account Managers, Project Managers, and product developers.

Assist in creating and documenting policies and procedures.

Contribute to written proposals and technical documentation.

Review assigned service requests daily, following up and providing status updates to clients.

Ensure data pertaining to the status of service requests is entered into the problem tracking systems accurately and promptly to provide an up-to-date picture of service delivery status and backlog.

Work regularly with network and security technologies/topologies including:

WAN - MPLS, MPLS Layer 2/3 VPN’s, Frame-Relay, GRE/IPSEC VPN, VPN, SIP/PSTN services.

Layer 2 networking - 802.1(D,W,S), Ethernet, PPoE, Ether-Channel.

Layer 3 networking - IPv4, IPv6, OSPF, EIGRP, RIP (v2), BGP, MP-BGP, PFR, OSPFv3, EIGRPv6, RIPng, Advanced Redistribution, VRF-lite.

Multicast Networking - Multicast (Sparse + Dense), MSDP, Anycast, Auto-RP, BSR, PIM, SSM.

Security - CBAC, Zone-Based firewall, Reflex ACL, NAT, IP Source Guard, uRPF, Cisco IPS/IPS, RSA Envision.

QOS – Congestion avoidance and congestion management. MQC, CBWFQ, LLQ, NBAR, WRED, Auto-QOS.

VOIP - Cisco voice gateway functionality, SRST.

Unified Computing/Virtualization - Design, support, configure, upgrade Cisco UCS systems.

Data Center - FabricPath, FEX, vPC, UCS, FCoE.

Wireless – Cisco Wireless LAN controllers, lightweight and autonomous AP models, Cisco Prime Infrastructure, MSE, Aruba and Meraki.

VPN - SSL VPN, IPSec VPN, and DMVPN (phase 1 and 2), EZVPN, Anyconnect.

Utilize a variety of other technologies such as scripting/coding (Python, Bash, Perl, Ruby, TLC); Hardware: switches (Cisco IOS and Nexus platforms), routers (Cisco IOS and IOS XE platforms), SD-WAN (Cisco, Silver Peak, CloudGenix), Firewalls (Cisco ASA / FTD, Palo Alto and Fortinet platforms), Load Balancers (Cisco ACE, CSS, F5 LTM and F5 GSM), WAN Optimization (Riverbed Steelhead and Cisco WAAS), Security policy, access, and content platforms (Cisco ISE, Cisco Umbrella), GCP cloud-native firewall, SDWAN, SASE, AWS, and Azure

Minimum requirements: Bachelor’s degree in computer science, electronic engineering, or a related field plus 2 years of network security engineering experience in large enterprise and/or data center environments, including Python and Bash coding, work with traditional WAN, Cisco Wireless LAN, Firewalls (Cisco ASA / FTD, Palo Alto), Layer 2 and Layer 3 networking, Unified Computing/Virtualization, VPN, Windows, Red Hat Linux, Solaris, DNS, DHCP, Netflow, Wireshark, MS Visio, and security focused technology (CBAC, Zone-based firewall, Reflex ACL, NAT, IP Source Guard, uRPF, Cisco ISE, and Zscaler). Alternatively, CDW will accept 4 years of network security engineering experience in large enterprise and/or data center environments, including Python and Bash coding, work with traditional WAN, Cisco Wireless LAN, Firewalls (Cisco ASA / FTD, Palo Alto), Layer 2 and Layer 3 networking, Unified Computing/Virtualization, VPN, Windows, Red Hat Linux, Solaris, DNS, DHCP, Netflow, Wireshark, MS Visio, and security focused technology (CBAC, Zone-based firewall, Reflex ACL, NAT, IP Source Guard, uRPF, Cisco ISE, and Zscaler).

The job is based out of CDW’s Vernon Hills, IL headquarters but the employee may work remotely from anywhere in the U.S. Up to 10% national travel is required. Salary: $130,770. Please apply via this website.

Travel: Yes, 10 % of the Time