Network Engineer 3 (Vulnerability Management)

About The Position

Requirements

• Bachelor’s degree or 4+ additional years of equivalent experience.
• 5+ years of experience supporting end to end network technologies such as routers, switches, VPN appliances, firewalls, proxy's, load Balancers, DNS appliances, and wireless devices.
• 2+ years of professional experience with automation and scripting in a Network enterprise environment.

Nice To Haves

• Experience with Palo Alto Firewalls, F5 Load Balancers, AVI/NSX Advanced Load Balancers, Cisco Identity Services Engine (ISE), Data Center switching (Arista and Cisco Nexus devices).
• Experience with UNIX/Linux.
• Scripting experience (Python, Bash, and/or PowerShell).
• Automation experience using Ansible (Core/Tower/AAP or AWX).
• Experience with APIs, integrations (Service-Now, Splunk etc.).
• Strong knowledge of network protocols (TCP/IP, DNS, HTTP/S) and network device configurations.
• Advanced understanding of business technology drivers and their impact on architecture design.
• Proficient in more than one specific infrastructure technology.
• Advanced understanding of security frameworks and compliance standards (NIST, CIS).
• Ability to effectively multi-task and prioritize.
• Self-directed and accountable.
• Experience with a cloud platform such as AWS, GCP, or Azure.
• Technical certifications such as Cisco CCNP-Enterprise or Datacenter, Palo Alto PCNSA, PCNSE, or F5, CISSP, CEH or Security +.
• Strong analytical and problem-solving skills.
• Excellent communications skills (written and verbal) and ability to work both independently and in a group.
• Experience navigating highly technical issues and terms to non-technical stakeholders.
• Experience in an enterprise environment and previous banking/financial industry experience is a plus.

Responsibilities

• Conduct regular vulnerability assessments of outstanding vulnerabilities in the network infrastructure space (Routers/Switches/Firewalls/Load balancers, Wireless Lan Controllers, Network Service Appliances).
• Analyze identified vulnerabilities, prioritize and plan paths to remediation.
• Collaborate with platform engineering teams and operations teams to apply security patches, workarounds, or mitigations in timely manner while minimizing operational disruptions.
• Ensure the vulnerability management practices align with standards and internal policies.
• Maintains current knowledge of hardware, software and network technology and recommends modifications as required.
• Maintains up-to-date documentation on vulnerability status, patch management, and remediation efforts.
• Provide regular reports to senior management on vulnerability management efforts and progress.
• Provide technical guidance and training to IT staff on vulnerability management best practices and secure configuration procedures.
• Provide after hours and on-call support for vulnerability mitigation as needed.

Benefits

• health insurance coverage
• wellness program
• life and disability insurance
• retirement savings plan
• paid leave programs
• paid holidays
• paid time off (PTO)