NESC Staffing
Network Security Engineer
NESC Staffing, Cordaville, MA, United States
Network Security Engineer
Position Summary
We're looking for a Network Security Engineer to join our Infrastructure Team. This role will be a hands-on technical expert driving the success of IT through administration, automation, and maintenance of the organization’s network and security devices. This person will succeed by optimizing systems and network uptime, maximizing the benefit of IT systems investments, and assisting with the direction of the overall technology strategy.
Essential Duties & Responsibilities:
· Serve as the networking lead for the information security and infrastructure team
· Serve as a key member of the organization’s Security Operations Center (SOC)
· Monitor and maintain the organization’s perimeter and endpoint security
· Configure and manage routers, switches, firewalls, IPS, WAF, load balancers, and all other networking equipment
· Support complex network and infrastructure issues and manage the performance and capacity of infrastructure and applications
· Troubleshoot, manage, and provision Servers (2016/2022) in physical and virtualized environments
· Plan and implement upgrades, patches, and installation of new applications, security patches, and equipment
· Take a proactive approach to monitoring via tooling and daily checklists to ensure critical infrastructure is meeting the demands of the business
· Troubleshoot system failures quickly to minimize outages or interruptions;provide root cause analysis on any outages
· Communicate and collaborate with internal/external technology departments and end-users
· Participant in an on-call rotation (1-week per month)
· Other responsibilities as required
Skills & Qualifications:
Five or more years of experience with the following:
· Network administration of Cisco and networking hardware (switches, firewalls, routers, etc).
· Experience supporting LAN, WAN, SD-WAN, IPSEC-Tunnels, MPLS WAN, EPL WAN, OSPF, BGP, and other routing protocols.
· Build and administration of Cisco ASA firewalls
· Build and administration of F5 Load Balancers
· Maintaining and supporting Cisco Firepower and F5 ASM (WAF)
· Administration and monitoring of network and system logs using Splunk or other SIEM platform
· Experience with threat detection, network & and application vulnerability scans, PEN testing, etc
Three or more years of experience with the following:
· Supporting Microsoft-based infrastructure: Servers, AD, SQL, IIS, File Services, etc
· Supporting virtualization technologies, particularly VMware vSphere and Nutanix AHV
· Implementing and managing security (users, roles, security groups)
· Managing end-user remote access solutions: VPN, SSL VPN, Citrix
· Certifications: CCNA or CCNP
Nice to haves:
· Experience working in a highly controlled environment: health, finance, insurance, etc
· Exposure to cloud VoIP solutions
· Exposure to NIST 800-53, ISO27001, HITRUST, MARS-E, SSAE16/18