Security Engineer III (Fully Remote)

Security Engineer III



Summary
The Security Engineer III works directly with clients and responds to security incidents and remediates if needed to mitigate any security vulnerabilities.
Essential Functions
* Interprets and implements customer change requests on managed security device platforms, primarily firewalls and IDS/IDP devices
* Troubleshoots problems including: security-related issues (firewalls, IPS, understanding of common protocols in security like DNS, SSL, TLS, HTTP(s), ftp, etc.,) routing and switching, protocol problems, WAN/LAN failures, and performance issues across a distributed segmented network infrastructure with multiple security zones
* Maintains and administers perimeter security systems such as firewalls and intrusion detection systems
* Maintains good working knowledge in VPN technologies and security protocols like IPsec, ISAKMP, SSL, PKI, RADIUS, TACACS, EAP, LDAP etc.
* Implements vendor firewalls, for example Cisco ASA firewalls including 2100 and 4100s
* Migrates customers from legacy security appliance to new platforms
* Works with BGP, OSPF, EIGRP routing protocols
* Works with Cisco 6500, 4500, 3750, 3560 and 3550 catalyst switches
* Administers routers, switches and firewalls
* Resolves trouble tickets
* Monitors and tests network performance and provides network performance statistics and reports
* Evaluates and recommends near- and long-term network capacity needs
* Creates and maintains documentation as it relates to network configuration
* Conducts research on network products, services, protocols, and standards to remain abreast of developments in the networking industry

Additional Specific Duties and Responsibilities
* Maintains Cisco FireSight Management (FirePower)

Required Qualifications
* Hands on experience with one or more of the following firewall platforms or technologies: Cisco ASA/FirePower, CheckPoint, SonicWall, Palo Alto, IP Filter or iptables
* 3 or more years hands on experience migrating security appliance within the customer
* Understands basic network principles related to TCP/IP
* Possesses technical aptitude and interest related to networking, Internet, and computer technologies
* Two years of experience working in external customer facing environment for support
* Must possess excellent oral and written communication skills in English
* Ability to demonstrate high standards of conduct and ethics as well as appropriate judgment, independence, and discretion
* Strong analytical, interpersonal, and relationship building skills
* Strong work ethic and personal drive to excel
* Strong sense of urgency and commitment to get the job done
* Superior negotiation, coordination, and conflict resolution skills
* Ability to use (and learn new) complex systems, technologies, and applications
* Ability to adapt to change quickly and multi-task

Desired/Preferred Qualifications
* One or more vendor certifications for enterprise level security platforms such as CCNA, CCNP or CCIE in Security