Network Security Engineer

  • location: Cary, NC
  • type: Contract
easy apply

job description

Network Security Engineer

job summary:
The Converged Security Operations Center (CSOC) is a 24x7x365 work center that provides managed security services to medium to large companies. The CSOC currently manages less than 20 customers with a total of over 3000 devices under management. We also partner with our Network Operations Center and Analytic Operations Center groups to provide a seemless management solution to our customers. The CSOC is one of a small number of organizations that has both ISO and ITIL certifications.

Every CSOC position is subject to being assigned to any shift required to meet business demands of a 24x7x365 Operations Center. This includes pre-scheduled weekend, off-shift work and off normal shift work as required. Shift hours are: First Shift - 7:00am to 3:30pm, Second Shift - 3:00pm to 11:30pm, Third Shift - 11:00pm to 7:30am Eastern Time.

 
location: Cary, North Carolina
job type: Contract
work hours: 8am to 5pm
education: No Degree Required
 
responsibilities:
Position Responsibilities

- This position requires application of knowledge of established procedures, policies and best practices.

- Must act as an escalation point for Tier2 to deal with any issue when required

- Perform troubleshooting and diagnosis of complex enterprise security device incidents

- Work with Design Engineer, Project Engineer and Project Manager on customer transition, implementation, or transformation projects

- Serves as subject matter expert (SME) on customer security products and services.

- Collaborate with Security Engineering and Project Management to create custom solutions for assigned customer.

- Must understand how proposed architectural changes will impact the customers' business and be able to articulate outcomes to technical and non-technical audiences.

- Will have responsibility of taking ownership of assigned tasks, resolve tasks within assigned shift or correctly transition incident to oncoming shift if not resolved, track task to resolution.

- Work with enterprise security device vendors to resolve complex incidents, replace defective hardware, and receive software patches/fixes to resolve incidents.

- Provide on-site support, if located on or near customer premises.

- Assess vendor vulnerability reports against existing customer devices. Work with customer to implement mitigation activities if required.

- Required to give presentations via training sessions, web pages, or 1-on-1 training to Tier2, Tier3 peers and Project Engineers.

- Will be required to use vendor provided tools, log files, Verizon provided tools/scripts, etc. to resolve complex incidents.

- Required to understand 7 layers of OSI model and should be able to troubleshoot complex incidents involving first four layers.

- Required to utilize available expertise and/or materials to resolve escalated incidents impacting enterprise security devices.

- Position requires regular attendance on incident calls, review and understanding of documented processes, ability to update process documents, provide peer-to-peer training and interaction with high level Verizon and customer managers

- Position requires Change Management participation to include; create/update/close change request in requisite change system, design change and submit change form, or review submitted change form and correct any deficiencies, stage or implement change and troubleshoot failed changes.

- Assist Tier2 engineers with or perform troubleshooting, configuration, replacement, updating or installation of enterprise security devices.

- Required to perform monthly checks of device operations to include; OOB testing, backups, password management, etc. Resolve any issues identified.

- Develop scenarios to mock possible incidents for training purposes.

- Create personal performance objectives/goals to align with corporate objectives.

- Create, distribute, analyze and evaluate network management performance reports to requestor.

- Perform in-depth research of assigned problems to identify resolution options, document options, select best option, and present information to customer and implement approved resolution.

- Create and present Root Cause Analysis (RCA) document when requested.

- Participate in the Capacity Management process by analyzing and providing input for capacity reports to Project Engineer and Security Engineering.

- Participate in audit and compliance assessments performed internally, by external vendors or by customer audit teams.

- Perform other duties as required.



 
qualifications:
Position Responsibilities

- This position requires application of knowledge of established procedures, policies and best practices.

- Must act as an escalation point for Tier2 to deal with any issue when required

- Perform troubleshooting and diagnosis of complex enterprise security device incidents

- Work with Design Engineer, Project Engineer and Project Manager on customer transition, implementation, or transformation projects

- Serves as subject matter expert (SME) on customer security products and services.

- Collaborate with Security Engineering and Project Management to create custom solutions for assigned customer.

- Must understand how proposed architectural changes will impact the customers' business and be able to articulate outcomes to technical and non-technical audiences.

- Will have responsibility of taking ownership of assigned tasks, resolve tasks within assigned shift or correctly transition incident to oncoming shift if not resolved, track task to resolution.

- Work with enterprise security device vendors to resolve complex incidents, replace defective hardware, and receive software patches/fixes to resolve incidents.

- Provide on-site support, if located on or near customer premises.

- Assess vendor vulnerability reports against existing customer devices. Work with customer to implement mitigation activities if required.

- Required to give presentations via training sessions, web pages, or 1-on-1 training to Tier2, Tier3 peers and Project Engineers.

- Will be required to use vendor provided tools, log files, Verizon provided tools/scripts, etc. to resolve complex incidents.

- Required to understand 7 layers of OSI model and should be able to troubleshoot complex incidents involving first four layers.

- Required to utilize available expertise and/or materials to resolve escalated incidents impacting enterprise security devices.

- Position requires regular attendance on incident calls, review and understanding of documented processes, ability to update process documents, provide peer-to-peer training and interaction with high level Verizon and customer managers

- Position requires Change Management participation to include; create/update/close change request in requisite change system, design change and submit change form, or review submitted change form and correct any deficiencies, stage or implement change and troubleshoot failed changes.

- Assist Tier2 engineers with or perform troubleshooting, configuration, replacement, updating or installation of enterprise security devices.

- Required to perform monthly checks of device operations to include; OOB testing, backups, password management, etc. Resolve any issues identified.

- Develop scenarios to mock possible incidents for training purposes.

- Create personal performance objectives/goals to align with corporate objectives.

- Create, distribute, analyze and evaluate network management performance reports to requestor.

- Perform in-depth research of assigned problems to identify resolution options, document options, select best option, and present information to customer and implement approved resolution.

- Create and present Root Cause Analysis (RCA) document when requested.

- Participate in the Capacity Management process by analyzing and providing input for capacity reports to Project Engineer and Security Engineering.

- Participate in audit and compliance assessments performed internally, by external vendors or by customer audit teams.

- Perform other duties as required.



Required Skills & Experience:

-----------------------------

- This position requires a broad range of familiarity with principles, theories, concepts and technologies.

- Ability to multitask, prioritize and resolve urgent issues.

- Must have excellent understanding and knowledge of enterprise firewall functionality. This includes but is not limited to: Palo Alto, Fortinet, Juniper, Checkpoint (GAIA, Splat, R65-R75-R80, etc.), Cisco (PIX/FWSM/ASA), etc.

- Must have advanced understanding of Caching/Proxy/AV devices. This includes but is not limited to: Symantec, Cisco, NetCache, etc.

- Must have advanced understanding of Global/Local load balancing devices. This includes but is not limited to: F5 (LTM, ASM, GTM, APM), Cisco ACE, etc.

- Must have advanced understanding of VPN devices. This includes but is not limited to: Juniper, Cisco, etc.

- Must have advanced understanding of Enterprise Management tools. This includes but is not limited to: Panorama, FortiManager, FortiAnalyzer, Provider-1, Enterprise Manager, CSM, etc.

- Experience working in 24x7 centers with complex, mission-critical, high transaction, high availability environments.

- Advanced understanding of networking technologies, eg. routers, switches, routing protocols, etc..

- Will have excellent verbal and written communication skills and have the ability to work in a team environment.

- Must be able to effectively interface with customer employees, Program Office employees, other Verizon employees and Senior Management

- Ability to provide critical information in a clear, concise and quick manner

- Must enjoy working in a fast paced environment

- Must have enhanced Linux/Unix skills.

- At least 2 years experience working with TCP/IP, Ethernet networks and troubleshooting tools (tcpdump, trace, etc.)

- An advanced understanding of Internet protocols such as UDP, ICMP, DNS, SMTP, POP, HTTP, and SNMP

- Extensive and hands on experience with both physical and network/host level security.

- ITIL Certification required (or must obtain within first year of hire).

- Internal applicants should be familiar with GSD, ESP, ETMS, IONIX, Tier1 - Espresso and Concord.

- Ideal candidate will have understanding of industry trends in all areas of Information Security.

- Ideal candidate will have a strong, multi-discipline, operations background with emphasis on supporting business critical environments

Desired Skills & Experience: (Based on the specific needs of the requisition)

--------------------------

CISSP Information Security certification

Palo Alto PCNSE

Fortinet NSE

Checkpoint CCSA/CCSE

F5 Essential/Advance Certifications

Proxy Certifications (BlueCoat, Redline, NetCache)

Cisco Security certification(s)

Cisco Network certification(s)

ITIL v2/3 certification

Linux/Unix scripting

Web Development/Scripting

EDUCATION AND EXPERIENCE

------------------------

- Computer Science related Bachelor degree (or equivalent experience) and at least 4 years experience in Network/Security Operations Center.

- Associates degree (or equivalent) from two year college or technical school and at least 6 years experience in Network/Security Operations Center.

Work Hours

----------

Every CSOC position is subject to being assigned to any shift required to meet business demands of a 24x7x365 Operations Center. This includes pre-scheduled weekend, off-shift work and off normal shift work as required. Shift hours are: First Shift - 7:00am to 3:30pm, Second Shift - 3:00pm to 11:30pm, Third Shift - 11:00pm to 7:30am Eastern Time.

 
skills: Network

Engineer

Palo Alto, Fortinet

Juniper, Checkpoint (GAIA, Splat, R65-R75-R80, etc.)

Cisco (PIX/FWSM/ASA), etc.

Caching/Proxy/AV devices.

Symantec, Cisco, NetCache, etc.

Juniper

Cisco


Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

easy apply

get jobs in your inbox.

sign up
{{returnMsg}}

related jobs

    Security Engineer

  • location: Research Triangle Park, NC
  • job type: Contract
  • salary: $43 - $53.75 per hour
  • date posted: 10/3/2019