Senior Cloud Network Security Engineer
Description:
Title – Senior Cloud Network Security Engineer
Duration: Long term
Location: New York, NY (2 days a week on site and rest is remote).
Position Summary:
You will join as a pivotal member of our team, ensuring the security, integrity, and availability of our cloud network infrastructure. You will lead initiatives to safeguard our systems and data from cyber threats, designing and implementing robust security measures while responding effectively to security incidents. This role demands a blend of technical skills, leadership, and proactive risk mitigation.
Job Responsibilities:
Work in a term to design and implement secure cloud network architectures, prioritizing redundancy, scalability, and fault tolerance for both on premise and cloud environments.
Proficient in setting up, configuring, and maintaining Palo Alto Networks Next-Generation Firewalls (NGFW) in the cloud.
Experience in configuring private connectivity such as ExpressRoute, Direct Connect, Cloud Interconnect.
Ability to configure and maintain highly available site-to-site VPN connections across all major clouds, utilizing architectures such as Hub-and-Spoke models, AWS Transit Gateway, and Shared VPCs, with expertise in BGP routing for failover across multiple customer gateways. Implement monitoring and alerting to ensure high availability.
Configure, manage, and monitor cloud network security devices such as firewalls, VPNs, IDS/IPS, and load balancers.
Evaluate existing infrastructure for security vulnerabilities and propose enhancements.
Actively participate in incident response, conducting thorough investigations and implementing remediation measures.
Conduct regular vulnerability assessments and penetration testing, collaborating with IT teams to prioritize and address identified vulnerabilities.
DevSecOps mindset ensuring network security and strict compliance with organizational policies by implementing advanced security protocols.
Create cloud configurations using IaC templates (CloudFormation, Terraform, etc.) across all major clouds vendors.
Stay abreast of the latest security threats, trends, and best practices, actively participating in industry conferences and forums to share knowledge and gain insights.
Minimum Qualifications:
Bachelor's or Master's degree in Computer Science, Information Security, or a related field.
Skills Required:
Advanced expertise in Palo Alto, Forescout, and F5 engineering, along with proficient knowledge of Gigamon, Fortinet, network routing, and DNS.
Additional Information:
The successful candidate will demonstrate a strong commitment to continuous learning and professional development, coupled with exceptional problem-solving skills and the ability to communicate complex technical concepts effectively across diverse teams.