DIRECT CLIENT NEED *
* Network Engineer & Cyber Security ( 2 positions) * Binghamton, NY - Onsite interview is required so prefer locals There are two positions. Please see below. This role is with one of our direct clients in Binghamton, NY 12 month contract, will need people wo can do a face to face interview so must be local or those who can come for in person (100 miles radius) Both C2C or w2 will work. Prefer GC/Citizens as they may want to convert after 12 months. Will look at H1s also if they are really good Position I: Network Engineering * 5+ years of routing and switching experience. Ability to troubleshoot advanced routing and switching protocols independent of device manufacturer. * Possess the ability to troubleshoot networks by deduction and reasoning to discover the network design and nature of the issue. * Strong analytical and problem solving skills. Ability to successfully solving difficult problems that require adaptation and modification of standard techniques, procedures and criteria. Must be capable of devising new approaches to problems encountered. * Wide-area networks and automation systems for electric utility experience * Enterprise WAN design and deployment experience * LAN design experience with IEC-61850 networks for critical systems and applications * SONET and MPLS design, deployment and troubleshooting experience * Experienced and competent individual capable of successfully solving difficult problems that require adaptation and modification of standard techniques, procedures and criteria. * Must be capable of devising new approaches to problems encountered. * Experience with designing and programming Siemens switches and routers. * Excellent written & verbal communication skills. * Experience designing networks to conform with regulatory standards such as NERC CIP and NIST * Network Management System design and deployment experience * Registered PE (professional engineer) in Maine and/or New York preferred * Bachelor's degree is required * The network engineer is responsible for the following functions: * Installation, provisioning, and maintaining of network switches and routers, including Ruggedcom switch equipment * Identifying and troubleshooting of network issues (routing, switching, etc.) both LAN and WAN * Design network topology and architecture * Re-evaluate new technologies, and ways to improve existing network resources * Perform testing of new technologies * Training of IUSA network engineers * Participate in ongoing training as applicable * Complete switch configuration and settings * Managed deployment of IT assets to substations * Assist in the monitoring of network resources and respond to incidents when necessary * Bandwidth estimation * Review/Design overall substation LAN topology and network design * Review/Design firewall design and implementation and verify that no cyber vulnerability existing within the existing design * Provide field support/assist in the setup all network switches the ensure that substation level LAN network perform properly and passes all required network traffic * Track all required licenses/firewalls and key network deliverables * Provide feedback to owner on existing TM standards and help refine the IUSA design practices and procedures. Assist owner in creating new TMs, Templates or Design Manuals * Ensure all as-built documentation gets filed appropriately. Position II: Cyber Security Engineering * Experience with NERC CIP V3 and 5 policy implementation, testing, and program development (systems architecture, documentation, systematic reporting and data retrieval, etc.) * Experience deploying, managing, monitoring firewalls and designing enterprise systems * Enterprise Management of critical applications * Experience performing penetration testing and vulnerability assessments * Experience with Check Point firewalls preferred * Detailed knowledge of IT security concepts * Ability to clearly communicate complex architectures through the use of standard drawing tools The Cyber Security engineer is responsible for the following functions: * Installation, provisioning, configuring, and maintaining of network firewalls, including Check Point firewall equipment * Development of firewall rules for substations, test networks, central firewalls, Windows firewalls * Participation in NERC CIP site audits * Assisting with maintaining NERC CIP compliance documentation * Managing the Patch Management program for NERC CIP compliance * Central firewall deployment, network architecture design between operating companies * Vulnerability assessments, assisting with and performing penetration testing * Substation physical security device integration * Troubleshooting of network, VPN, and firewall issues * Monitoring of logs and access attempts * Responding to network intrusion attempts * Developing network hardening plans and procedures * Assist in training client resources. * Assist owner in creating new TMs, Templates or Design Manuals Additionally, they should have a combination of certification and 2+years' experience in the technologies listed below or 4+ years' experience in lieu of certification. These staff will provide support services on the following system equipment types: Network and Security Devices and Software * ASA Firewalls * Layer 2 Switches * Layer 3 Switches * Sourcefire Defense Center and IPS sensors * Tenable Security Center, LCE, and PVS * Tenable Nessus * OSSEC * Enterprise Log Search and Archive (ELSA) * Cacti * IPS Manager Express and Sensors * CSA Management Center * MARS Event Correlation * Qmail * Jump Host Transient Cyber Assets Laptops The Cybersecurity services should include the following: Vulnerability Monitoring and Patch Deployment Monthly Patch Report and Mitigation Plan On a monthly basis, Vendor will provide patch reports for network devices and software. The report will identify all potential vulnerabilities as reported by the manufacturer / originating vendor and identify which vulnerabilities are applicable to client environment. This report will be submitted to the client and will be used as the Patch Deployment Plan. This report will include the following: * Level 1 patch report for network and security devices and software * Verify which vulnerabilities and patches are applicable to client environment * Provide a list of recommended patches for deployment * Identify configuration changes * Review with client staff and gain approval of deployment Patch Deployment - Quarterly The patch deployment process will include the following deliverables: * Deploy patches on the predetermined Phase 1 devices and perform testing. * Update deployment plan based on Phase 1 findings * Deploy patches on the predetermined Phase 2 devices * Update deployment plan based on Phase 2 findings * Deploy patches on the predetermined Phase 3 devices Quarterly Patch Deployment Documentation At the completion of each mitigation process, Vendor will provide a finalized document that details the update process including the software version, configuration changes, upgrade and deployment with final resolution. This documentation will serve as the final submission for compliance. ESP Testing At the completion of each quarter, once the patch deployment process is completed, an ESP test will be performed to confirm that security controls are functioning as designed. This will include the following services: * Perform ESP test procedure against Spectrum * Verify that security controls are working as intended and per client cybersecurity policy documents * Update as required to ensure controls are functional * Document the results of the ESP test Proactive Cybersecurity Monitoring The security system must be proactively monitored to ensure ongoing cybersecurity awareness and adaption to system changes. To accomplish this, Vendor will provide proactive cybersecurity monitoring. Key functions of this service include the following: Perform a monthly review of overall system event activity to identify o Event anomalies. o Review system health and performance. o Perform security event review and implement new reports and alerts, where required. o Make recommendations for event investigation, if questionable activity is identified. o Provide a written report of key activities and findings. Cybersecurity System Maintenance Vendor will provide a security system maintenance function. This service will help to ensure that the cybersecurity system and supporting tools are functioning properly, are updated and configured to reflect feature enhancements. As technology changes, cybersecurity systems must adapt accordingly. Systems must be proactively maintained to ensure adequate functionality and awareness. Key functions of this service include the following: * Perform a feature enhancement review of vendor/system updates on a quarterly basis * Implement reasonable enhancements and configure the system to take advantage of these new features. * Implement new reports and/or alerts based on feature enhancements * Provide hands-on training to client staff and demonstrate new functionality * Provide a written report of reviewed enhancements and implemented changes Thanks, _____________________________________ Bhavesh Khatri | New York Technology Partners 111 Town Square Place | Suite 1236 | Jersey City, NJ 07310 Direct: 201.448.8157 | Fax: 201.521.0400 | <http://www.nytp.com/> www.nytp.com LinkedIn: https://www.linkedin.com/in/khatribhavesh Hi, just a reminder that you're receiving this email because you have expressed an interest in New York Technology Partners. Don't forget to add [email protected] <mailto:[email protected]> to your address book so we'll be sure to land in your inbox! If you wish to unsubscribe from this mailing list then please email me back with the word REMOVE in the subject line. If you don’t want to receive the emails click unsubscribe -- You received this message because you are subscribed to the Google Groups "VedaInfo Inc.," group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/abdul_it_staffing. For more options, visit https://groups.google.com/d/optout.
