Senior Network Security Engineer/Architect

TEKsystems•Westerville, OH

2d•$60 - $75•Hybrid

About The Position

This position is 4x per week on-site and can sit in the following locations: Top Skills' Details We need someone who is a high-level engineer moving into design and architecture or someone who has done some architecture all within Network Access Control and Segmentation (Cisco ISE). Description • Network Security SME • Network Access Control (NAC) and Cisco ISE segmentation • Platform Principal – more architecture, strategy, planning, design work • Thorough engineer and technical background • Someone who is looking to take next step into architectural role • Still hands on engineering work, technical changes, can also do design, build roadmaps and present roadmaps, work with vendors • Network Access Controls, Cisco ISE segmentation • We have a new tool Elisity– in the midst of bringing them in, additional tool for segmentation – similar to Cisco ISE, newer vendor, so someone with that would be amazing but it is newer so probably harder to find • Help build and deploy tool over next year • Still a lot of work in Cisco ISE Job Description Platform Principal Engineer - Infrastructure Security Services Job Description Summary The Platform Principal Engineer is responsible for developing and driving technical solution roadmaps within the Infrastructure Security Services domain. They leverage extensive training, certifications and experience to provide critical thought in the firewall, network access control (NAC) and network segmentation space. The successful candidate will be an effective communicator who can work across silos to tailor secure solutions that bridge the needs of the Business, Risk and Cyber Security. Job Description The Platform Principal Engineer is a member of the Infrastructure Security Services Team supporting our client's Enterprise Network Organization. This team is responsible for all research, project design, and initial implementation of security technologies as well as ongoing SME level support and escalations. This role specifically will focus on network security technologies related to network access control (NAC) and firewall infrastructure deployed in alignment to NIST SP 800-207 Zero Trust Architecture, PCI, SOX, CIS and FFIEC.

Requirements

Bachelor's degree in a STEM or Cybersecurity field.
Minimum 7 years of Infrastructure Solution Delivery experience with additional field experience on delivering infrastructure solutions in an enterprise-wide environment with a focus on security.

Nice To Haves

Strong leadership, verbal, written, organizational, and interpersonal skills.
Previous Financial Services experience or knowledge.
Master's degree in Cybersecurity or STEM field.
Certifications such as CISSP, PCNSA/PCNSE, CCNP, CEH, Security+
Proven track record of successfully designing and building network security solutions from the ground up.

Responsibilities

Expertise in Network Access Control (NAC) and Segmentation solutions such as Cisco ISE, Elisity, Forescout, Fortinet or Arista AGNI.
Fundamental knowledge of 802.1x, TrustSec and Security Group Tags (SGT) deployed in a distributed SD-WAN network to secure and segment IoT.
Build and enhance network security solutions with a “secure and automate first" mindset that will scale easily with growth.
Leverage Infrastructure as Code (IaC) concepts to manage configuration baselines via Jinja2/YAML and Ansible.
Participate in an on-call rotation.
Shares long-term technical and business vision to large audiences on a regular basis.
Partners with Enterprise Architecture for collection of business and technical requirements to make decisions on future platforms or solutions.
Maintains and develops professional and technical skillsets while keeping abreast of current and emerging technologies and how they drive value for our client
Builds high level and low-level design (HLD, LLD) drawings to present in Visio, PowerPoint, Word or other media.