Network Security Engineer with AWS
Description:
Must Have : AWS - VPC, NAT Gateway, Direct Connect, Route 53, Elastic load Balancing, CloudWatch, Cloud Front, WAF; Network-VPM, Firewall, SSL Inspection, SDWAN, BGP, OSPA, 802.1X;
Good to have experience with Python, Terraform.
Mandatory Certification : AWS Foundation Certification and Preferred AWS Engineer
10+ years network experience with proven success building and delivery world-class compliant network solutions
Ability to handle multiple tasks in a fast-paced environment, and prioritize highly varied work to maintain required productivity levels
Maintain, establish, and present performance and capacity metrics in association to the availability, performance of the environments and workload of the team
Shared responsibilities of the network security product change lifecycle from definition through development, delivery, and results assessment
Drive the efficient and effective delivery of our committed strategic plans with high availability, zero trust network access (ZTNA) and edge authentication
Experience with PCI and PCI DSS compliance activities leading sessions with internal compliance teams ensuring zero deviations and vulnerabilities.
Maintain, deploy, upgrade, and troubleshoot network security infrastructure solutions including firewalls, load balancers, client VPN, wireless, IP and access layer controls
Lead extensive troubleshooting effort including switch, router, and firewall analysis
Collaborate with Security, Infrastructure, Compliance and Operations teams to develop consistent technical solutions, implementation activities and support processes
Participate in the design, lifecycle management, and total cost of ownership of network security appliances, applications, and services
Work closely with Compliance team to review vulnerability assessments and penetration testing
Prioritize and manage execution of day-to-day operational network security changes to firewall, IDS/IPS, ACLs and other network security device configurations
Participate in definition of network security strategies and policies
Develop and refine network baseline security standards and management procedures
Creation and maintenance of network security diagrams
Best practice network security methodology
Business Continuity and Capacity Management
Communicating and collaboration to executive management and across support teams
Working knowledge in a mature ITSM environment
Support the incident and problem responses with network security solutions
Self-motivated with a hardworking and proactive approach
Assist with on-call support as needed
Technical Skills:
Cisco datacenter switches, ASR routers, multicast routing, access points (AP), ISE/NAC
F5 Big-IP GTM, load balancing
SD-WAN/SDN, WAN optimization
Next Gen Firewalls and Zero Trust Network Access (ZTNA)/Network Access Control (NAC)
Proxy/IDS experience/port security/VPN, DNS, DHCP, IPAM
Technology Stack:
Forcepoint, PulseSecure, Firemon, PaloAlto Panaroma, Netskope
Viptela SD-WAN
F5
Cisco ISE/NAC