Tekfortune Inc
Network Security Engineer
Tekfortune Inc, Carlisle, Pennsylvania, United States, 17013
Job Description -Mandatory Skills- Palo AltoThe position of a Network Security L3 is responsible for the ongoing Network Security Operations management to provide 24x7 support.The ideal candidate will have deep experience of networking technologies, such as Security, proxy, GNAC, IDS/IPS, routing, switching, managing heterogeneous environment & generate metrics related to Security, Network performance, capacity, availability, failure rates, and will also have a strong background in network performance management, service delivery and strategic operations planning with a strong technical orientation & creative in problem solving.Key responsibilities include:•This is a hands-on technical role:•Provide tier-3 (expert level) operational support for Firewalls, Proxies, IDS/IPS, NAC to resolve critical business issues that require deep network troubleshooting techniques and performance analysis•Independently own the Security Infrastructure support solving complex issues and suggest design modifications as appropriate.- Ensure SLAs are met - Responsible for performance analysis, proactive troubleshooting and capacity planning for the Security platforms.- Perform monitoring and maintenance of overall environment working with experienced team members.- Perform change controls. Update process documentation and team portals- Participate in troubleshooting, capacity planning and analysis, performance analysis & Root Cause Analysis.- Communicate with peers and managers regarding system issues & participate in 24x7 on-call.- Automate operational tasks to make processes simpler and more robust.- Ability to handle multiple complex tasks in a dynamic environment, with tight deadlines concurrently.•Refresh heat-maps and operations plans for campus network Security connectivity•Monitor and analyze statistical data to develop improvement plans for network Security and application performance•Provide an effective network Security capacity plan•Develop and monitor global weekly and monthly trending reports by business sectors to justify future growth
Additional Responsibilities Include:•Oversees the management of service level agreements (SLAs) with vendors and service providers•Oversees and directs all aspects of the 24/7/365 mission critical network/telecommunication infrastructure operations; including planning, supporting, and maintaining functions•Serves as the senior-level escalation point for network operations to resolve critical incidents•Maintains policy and procedures manual, conducts monthly service review meetings with key stakeholders•Provides leadership, management, direction, and technical oversight for the network Security operations department
Required Qualifications and Experience:•Bachelor's degree or related qualification•Certifications is a must (Food and Beverage Client, CCNP Security, CCDP, CCIE Security)•Minimum 12+ years of working in a Network / Telecommunications role, with expert level experience with Firewall Management, Proxy Management, IDS/IPS Management, NAC Management, SD-WAN, VPN, Firewalls, etc technologies•Experience of working in a multi-cultural, virtual team, across multiple geographical regions•Experience with technologies such as: Cisco / Juniper/ Palo alto HSRP/VRRP, VRF, VPC, VC, LACP, Fabric Path.•Experience with technologies such as: Cisco VPN, Any connect, Aruba GNAC, Cisco NAC•Experience with technologies such as: Palo Alto Threat Protection/ Cisco Firepower/ iXIA IPS/IDS, Symantec Secure Web Gateways, Zscaler•Extensive support of Routing Protocols/Technologies such BGP,OSPF, Logical Overlay, IOS-XR, MPLS VPN, Multicast.•Strong understanding of application communication methodologies.•Ability to perform TCP/IP Network traces/packet captures with solid experience interpreting results.•High level of confidence and competence communicating on bridges.•Solid background in vendor management to drive incident resolution.•Experience with monitoring tools and strategies•Execute and analyze packet captures using Wireshark and other related technologies.•Perform or participate in complex maintenance or deployment activities.•Create or modify documentation in response to new events and learnings.•Routinely provide constructive feedback for improvement opportunities•Ability to coordinate and direct activities across multiple teams•Excellent customer focus and engagement skills•Ability to develop solutions within a complex operational environment•Excellent verbal and written communications skills•Advanced knowledge of technical/business environment and problem determination strategies•Develops and maintains standard operating procedure manual and processes used by the team
Additional Responsibilities.
1. Working experience in any public ( Azure, GCP, Oracle , Aws or others) or hybrid cloud2. Experience on Cloud native or third party firewalls on cloud3. zure or AWS networking ( NSG, UDR, VPC , VNET, Route63 and others)
Additional Responsibilities Include:•Oversees the management of service level agreements (SLAs) with vendors and service providers•Oversees and directs all aspects of the 24/7/365 mission critical network/telecommunication infrastructure operations; including planning, supporting, and maintaining functions•Serves as the senior-level escalation point for network operations to resolve critical incidents•Maintains policy and procedures manual, conducts monthly service review meetings with key stakeholders•Provides leadership, management, direction, and technical oversight for the network Security operations department
Required Qualifications and Experience:•Bachelor's degree or related qualification•Certifications is a must (Food and Beverage Client, CCNP Security, CCDP, CCIE Security)•Minimum 12+ years of working in a Network / Telecommunications role, with expert level experience with Firewall Management, Proxy Management, IDS/IPS Management, NAC Management, SD-WAN, VPN, Firewalls, etc technologies•Experience of working in a multi-cultural, virtual team, across multiple geographical regions•Experience with technologies such as: Cisco / Juniper/ Palo alto HSRP/VRRP, VRF, VPC, VC, LACP, Fabric Path.•Experience with technologies such as: Cisco VPN, Any connect, Aruba GNAC, Cisco NAC•Experience with technologies such as: Palo Alto Threat Protection/ Cisco Firepower/ iXIA IPS/IDS, Symantec Secure Web Gateways, Zscaler•Extensive support of Routing Protocols/Technologies such BGP,OSPF, Logical Overlay, IOS-XR, MPLS VPN, Multicast.•Strong understanding of application communication methodologies.•Ability to perform TCP/IP Network traces/packet captures with solid experience interpreting results.•High level of confidence and competence communicating on bridges.•Solid background in vendor management to drive incident resolution.•Experience with monitoring tools and strategies•Execute and analyze packet captures using Wireshark and other related technologies.•Perform or participate in complex maintenance or deployment activities.•Create or modify documentation in response to new events and learnings.•Routinely provide constructive feedback for improvement opportunities•Ability to coordinate and direct activities across multiple teams•Excellent customer focus and engagement skills•Ability to develop solutions within a complex operational environment•Excellent verbal and written communications skills•Advanced knowledge of technical/business environment and problem determination strategies•Develops and maintains standard operating procedure manual and processes used by the team
Additional Responsibilities.
1. Working experience in any public ( Azure, GCP, Oracle , Aws or others) or hybrid cloud2. Experience on Cloud native or third party firewalls on cloud3. zure or AWS networking ( NSG, UDR, VPC , VNET, Route63 and others)