Network Security Engineer II

POSITION SUMMARY:The Network Security Engineer II is a mid-level IT security staff grade within the information security framework. The position requires mid to high level experience in both IT security and Infrastructure operations and will have an extensive background in core security areas including secure design and engineering, security analysis, security tools, policy, investigative and preventative controls, vulnerability assessment, penetration testing, ethical hacking, audit and compliance, security in layers, and core security techniques. The Network Security Engineer II will work closely with other security and operational team members to implement, maintain, and improve the security posture of the infrastructure.ESSENTIAL FUNCTIONS:Maintains and implements enhancements to current security management software and hardware devices including, but not limited to: Firepower Management Center, Sourcefire, ISE, WSA, CDO and other Cisco security products.Provides input across multiple disciplines regarding new projects to ensure the security posture of the environment.Provides technical expertise and support to other IT Security team projects and troubleshooting.Serves as subject matter expert on network security projects.Owns one to three concurrent projects requiring minimal supervision.ALL OTHER DUTIES AS ASSIGNEDEXPERIENCE/QUALIFICATIONS:Minimum Degree Required: Bachelor's Degree in Computer Information SystemsCertificate(s) or License(s) preferred: CISSP, CISM, CISA, GIAC, GSEC, CSSP, CCIE-Sec, CEH, PCI ISA, etc.Years of experience: Four to six yearsKNOWLEDGE, SKILLS, AND ABILITY:Must have knowledge in configuration of Cisco IOS and ASA.Possess hands-on knowledge of current LAN/WAN technologies, including entire TCP/IP protocol suite, wireless network, and multi-protocol routing in a Cisco environment.Knowledge of SSL encryption and troubleshooting.Working knowledge and exposure to Cisco network security products such as ISE/ISE-PIC, WSA, ASA/FTD and CDO/FMC.Functional knowledge of ESX/VMWare. NSX-T is a plus.Knowledge of VPN connections, protocols, and troubleshootingKnowledge of Wireless infrastructure components (Cisco Controllers and Meraki)Ability to work with small teams of high-performance professionals with direct or indirect matrix relationships.Proven project and resource management skills.Familiarity and experience developing, writing, and enhancing enterprise grade security policy and procedure, effective analysis in reviewing current practices, identifying improved approaches, and proposing same.TRAVEL REQUIREMENTS:N/APHYSICAL REQUIREMENTS:Regular computer work and sitting.INDEPENDENT JUDGEMENT:Performs duties within scope of general company policies, procedures, and objectives. Analyzes problems and performs needs assessments. Uses judgment in adapting broad guidelines to achieve desired result. Regular exercise of independent judgment within accepted practices. Makes recommendations that affect policies, procedures, and practices.

#J-18808-Ljbffr