Senior Firewall Administrator
About The Position
BAE's Cyber Security Engineering Team is searching for a Senior Security Engineer to assist in managing the Palo Alto firewall suite within our security team. Responsible for providing appropriate security development and support of tools and its services to enable the GSOC to utilize the state-of-the-art security tools and methods. Linux and Windows administration. Must have strong Palo Alto and Web Filt Admin experience. If you join us, you will perform many of the following duties: Administer Palo Alto firewalls using Panorama including but not limited to, object and rule creation, evaluation of firewall logs, network troubleshooting, and firewall configuration. A deep understanding of firewall deployment best practice such as, rule order and placement, port versus application based rules and when to deploy them, and rule or log analysis to improve firewall policy performance. Administer Web filter policies including but not limited to, adding/modifying white lists, setting up and evaluating connection traces, configuration and evaluation of rule traces, and other activities required for day-to-day support and incident troubleshooting. •Provide security application support, including the development of automated scripts and protocols for seamless application-server interaction. •Develop documentation as required (such as installation and Visio network and cabling diagrams, configuration guides, user tutorials, user and system requirements specification documentation, use cases, traceability matrices). Research, prototype and implement new security related technology solutions. Provide back up support to other engineers with enterprise tools. This may involve learning new tools and/or software solutions while working closely with other team members. Working hand-in-hand with our 24/7 GSOC to support their needs. Responding to and successfully triaging user requests via the phone, email or the incident management system. Analyzing network traffic patterns, security requirements, future growth requirements, feasibility for virtualization, resource requirements, risk mitigation, functional analysis, interface systems analysis, technical assessments, technology benchmarking, enterprise architecture analysis, and requirement analysis. Must possess: flexibility, strong work ethic, the ability to work with others, troubleshooting skills and a solid technical Information/network security foundation. This is a hands-on technical position which requires the ability to apply existing knowledge and theoretical concepts to real-world situations and a reasonable user interface. #LI-KK1 #LI-REMOTE
Requirements
- Bachelor's Degree in a relevant field and 6 years of work experience, or equivalent experience
- Strong understanding of networking protocols, including DNS, TCP/IP, and other common transport protocols
- Solid grasp of networking and security principles
- Experience implementing firewall technologies from vendors such as Palo Alto, Cisco ASA, Check Point, or Juniper SRX
- Firewall policy development, implementation, and management experience
- Firewall configuration and deployment experience, including: + Network configuration (e.g., VLANs, subnets) + Routing configuration (e.g., static routes, OSPF) + Rule configuration (e.g., access control lists, security policies)
Nice To Haves
- Industry-recognized certifications, such as Security+, Network+, Palo Alto Networks, or CISCO
Responsibilities
- Administer Palo Alto firewalls using Panorama including but not limited to, object and rule creation, evaluation of firewall logs, network troubleshooting, and firewall configuration.
- Administer Web filter policies including but not limited to, adding/modifying white lists, setting up and evaluating connection traces, configuration and evaluation of rule traces, and other activities required for day-to-day support and incident troubleshooting.
- Provide security application support, including the development of automated scripts and protocols for seamless application-server interaction.
- Develop documentation as required (such as installation and Visio network and cabling diagrams, configuration guides, user tutorials, user and system requirements specification documentation, use cases, traceability matrices).
- Research, prototype and implement new security related technology solutions.
- Provide back up support to other engineers with enterprise tools.
- Working hand-in-hand with our 24/7 GSOC to support their needs.
- Responding to and successfully triaging user requests via the phone, email or the incident management system.
- Analyzing network traffic patterns, security requirements, future growth requirements, feasibility for virtualization, resource requirements, risk mitigation, functional analysis, interface systems analysis, technical assessments, technology benchmarking, enterprise architecture analysis, and requirement analysis.
Benefits
- health, dental, and vision insurance
- health savings accounts
- a 401(k) savings plan
- disability coverage
- life and accident insurance
- an employee assistance program
- a legal plan
- discounts on things like home, auto, and pet insurance
- paid time off
- paid holidays
- paid parental, military, bereavement, and any applicable federal and state sick leave
- Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards
- Other incentives may be available based on position level and/or job specifics.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
