Senior Security Engineer

About The Position

Requirements

• BS in Computer Science, Information Security, or a related field is highly desirable
• 7+ years of work experience in information security, especially in a network security Engineer role
• Experience with NGFW, specifically with Palo Alto and Panorama
• Experience managing Infobox
• Technical expertise in analyzing threat event data, evaluating malicious activity, documenting unusual files and data, and identifying tactics, techniques and procedures used by attackers
• Technical expertise in system security vulnerabilities and remediation techniques, network and web-related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, etc.)
• Technical and troubleshooting expertise in security engineering, system and network security, authentication and security protocols
• Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
• An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business
• An understanding of organizational mission, values, and goals and consistent application of this knowledge
• ISO 2700 Awareness

Nice To Haves

• Preferred Certification - CSA+, CISSP, GIAC, PCNSA, PCNSE, PCDRA

Responsibilities

• Firewall management (e.g. DMZ, Internet, Third Party connections), specifically for Next Generation Firewalls
• Maintenance of IPAM
• Maintenance of remote access tools
• Support enterprise incidents
• Researches emerging threats and vulnerabilities to aid in the identification of network incidents
• Analyzes data from threat and vulnerability feeds and analyzes data for applicability to the client’s organization
• Ensures compliance with all applicable configuration standards
• Recommends security controls and/or corrective actions for mitigating technical and business risk
• Produces vulnerability, configuration, and coverage metrics and reporting to demonstrate assessment coverage and remediation effectiveness
• Provision and management of multi-factor authentication (e.g., token, certificate)
• Malicious code detection and prevention, and Internet monitoring (e.g. IDS/IPS)
• Security policy verification
• Tiered web filtering (e.g., URL filtering, malicious sites, spyware, advertisements, instant messaging, free software downloads)
• Internet usage reporting
• Provision, installation, configuration, management, and maintenance of network intrusion detection and prevention sensors at specified network entry points
• Intrusion Incident reporting
• Ongoing vulnerability assessment and remediation activities
• Support of Third Party security assessment, scanning and penetration testing
• Design, implementation, management and maintenance of encryption solutions
• Management of Client-owned security certificates, SSLs and domain names; where applicable
• Logging, tracking and management of security risks and issues to Resolution and closure
• Network security Services reporting per Client requirements
• Remediation of discovered security risks from any security audit findings