Senior Network Security Analyst

Transamerica•Cedar Rapids, IA

4d•Hybrid

About The Position

Next Generation Security is a Level 3 Infrastructure team responsible for the implementation and operational management of network security solutions and capabilities of a large global enterprise network. This position will provide 3rd level support of the Aegon Global Information Security Services which includes implementation and administration of network security hardware and software, enforcing the network security policy, and working with other support teams to meet the enterprise business needs of our customers. This will include troubleshooting incidents, collaborating with the Security Operations Center, providing escalation support for Level 2 Operations, and providing problem resolution. Support of Firewalls in AWS/Azure cloud and in physical data centers, remote access, and the advancement of security capabilities and concepts are the main focus areas.

Requirements

Experience working with APIs to automate essential firewall tasks using languages such as Python to improve efficiency of day-to-day tasks
Experience with firewall assessment and compliance tools such as FireMon or Tufin
Proven ability to understand and decode network traces and capture files
Proven ability to communicate in the written/spoken language with audiences of diverse technical understanding
Proven ability to be a self-starter with self-motivation for learning new technologies
Proven ability to quickly understand customer problems and how they relate to network/security infrastructure
Strong knowledge of network security, Palo Alto firewalls, intrusion detection systems, authentication mechanisms, encryption technologies, and networking protocols including SMTP, HTTP, DNS, TCP/IP, and SNMP.
A four-year computer science or related technical degree or equivalent work experience.
A minimum of 5 years’ experience in directly related work experience in network security administration\ engineering.
Significant experience building, implementing, and administering Palo Alto firewalls both physical and virtual

Nice To Haves

Prior experience implementing complex network security concepts and technologies using (but not limited to):
Palo Alto Networks Security Certifications (PCNSA/PCNSE)
Remote Access VPN solutions (e.g. Prisma Access)
SDN technology – Cisco ACI, Silver Peak
Guardicore Security Certifications (GCSA/GCSE)
AWS / Azure Cloud Certifications
Splunk
FireMon
Be able to work closely with 2nd and 3rd level Network Engineers, the Aegon Security Operations Center, as well as other teams in GTS
Proven experience working with diverse cultures on an international level.
Project and time management skills including the ability to handle multiple priorities simultaneously.
Experience supporting various Palo Alto solutions such as Global Protect, Wildfire, Expedition, etc.
Experience and deep knowledge of Palo Alto NextGen features and concepts such as UserID, AppID, ContentID, and HIPs.

Responsibilities

Provide day-to-day operational support for enterprise network security services, including firewalls, remote access technologies, and cloud-based network security controls across on-premises and public cloud environments.
Perform routine administration, configuration, and maintenance of network security platforms to ensure availability, stability, and compliance with security standards.
Execute firewall policy requests and changes, including rule creation, modification, review, and cleanup, in accordance with established security and change management processes.
Monitor, troubleshoot, and resolve network security incidents and service issues, partnering with security operations and infrastructure teams as needed to restore service and mitigate risk.
Serve as an escalation resource for complex operational issues related to firewalls, VPNs, and network security controls.
Support and maintain secure remote connectivity solutions, including IPSec and SSL VPN technologies, ensuring reliable and secure access for users and systems.
Analyze logs, alerts, and network traffic to identify security events, performance issues, and configuration problems; perform packet captures and root-cause analysis as required.
Assist with the implementation and rollout of new network security tools, upgrades, and enhancements, following established designs and standards.
Develop, update, and follow operational procedures, runbooks, and technical documentation to support consistent and repeatable security operations.
Use scripting and automation tools (e.g., APIs, Python) to streamline recurring operational tasks and improve efficiency of firewall and security platform management.
Conduct periodic reviews and assessments of firewall rules, configurations, and controls to identify risks, inefficiencies, and opportunities for improvement.
Ensure ongoing adherence to information security policies, regulatory requirements, and internal standards in all operational activities.

Benefits

Competitive Pay
Bonus for Eligible Employees
Benefits Package
Pension Plan
401k Match
Employee Stock Purchase Plan
Tuition Reimbursement
Disability Insurance
Medical Insurance
Dental Insurance
Vision Insurance
Employee Discounts
Career Training & Development Opportunities
Paid Time Off starting at 160 hours annually for employees in their first year of service.
Ten (10) paid holidays per year (typically mirroring the New York Stock Exchange (NYSE) holidays).
Be Well Company holistic wellness program, which includes Wellness Coaching and Reward Dollars
Parental Leave – fifteen (15) days of paid parental leave per calendar year to eligible employees with at least one year of service at the time of birth, placement of an adopted child, or placement of a foster care child.
Adoption Assistance
Employee Assistance Program
Back-Up Care Program
PTO for Volunteer Hours
Employee Matching Gifts Program
Employee Resource Groups
Inclusion and Diversity Programs
Employee Recognition Program
Referral Bonus Programs