Greetings From Sonoma Consulting!!!!! I am the Senior Executive Recruiter at Sonoma Consulting and I am currently working to fill a role for a *Network Security Engineer *that will be based on site in *Brooklyn- NY*
Job Title : Network Security Engineer Location : Brooklyn- NY Duration : 18 + Months Primary Skills: Data Security, Security Auditing techniques & Intrusion detection, Next Gen Firewalls (Palo Alto, ASA-X), F5 Load balancers, IPv4, IPv6, Reviewing LAN/WLAN/WAN Infrastructure design, Installing & Configuring Routers/Switches/Firewalls *Job Description* The ideal candidate will possess the following knowledge, skills, and abilities: • A minimum of 6 years of experience with Security data center and enterprise LAN and WAN planning, design and implementation. • Knowledge and understanding of basic information security principles • Knowledge of security best practice guidelines (ISO 17799, NIST, etc.) • Proficiency in data security and vulnerability remediation • Experience with security auditing techniques and intrusion detection. • Ability to review LAN/WLAN/WAN infrastructure design and identify potential security and performance concerns. • Experience with the installation and configuration of networking resources such as routers, switches, firewalls, IPS/IDS, testing utilities and software in a multi-vendor environment. • Develop and produce system architecture plans and designs, test plans, implementation plans, operation guides, and overall subject matter expertise for enterprise network security solutions. • Utilize available network troubleshooting tools, including network packet captures, monitoring devices, and log files to facilitate effective issue resolution. • Experience with designing and configuring Secure Web Gateways, Next Gen Firewalls (Palo Alto, ASA-X) and F5 Load balancers. • A thorough understanding of IPv4 and IPv6 unicast and multicast routing, routed and routing protocols, their limitations and constraints, as well as network services, protocols, and applications. • Experience with IPv4 and IPv6 security and technologies. • Experience with routing protocols including EIGRP, OSPF, BGP, and MPLS and methods for securing the WAN. • Experience with the installation and maintenance of Security related software and hardware. • Experience with writing end-to-end security documentation and writing technical engineering documents, troubleshooting guides, and certification documents. • Ability to develop and execute test plans and procedures to certify hardware, software, and services. • Ability to identify and troubleshoot issues, determine the root cause of problems, and resolve problems/issues. • Experience with capacity planning, proof of concept testing and certification. • Provide Tier 3 support for advanced troubleshooting of network or systems related issues. • Excellent interpersonal skills. • Self-motivated and directed. • Attention to detail. • Work with client Network and Security Engineers to define the network strategy, infrastructure, and system model to support further growth of the business. • Occasional travel between sites for meetings, support, upgrades and installations. • Perform other duties as assigned/required. The duties of this engineer will consist of: • Partner with DoITT Network and Security Engineers to understand and enforce access and data protection policies within Access Control Lists (ACLs), firewall policies, URL filtering, VPNs and IDS/IPS policies. • Research, evaluate and recommend Security architecture solutions based on performance, stability, availability, cost-efficiency • Development of requirements needed to assist a new DoE Datacenter buildout in support of an upgraded SESIS Application. • Collaborate with DOITT Security Engineering and advise on policies and procedures, technical problem resolution, and best practices for network security infrastructure design and implementation. • Consult with and advise DoITT of various security technology infrastructure designs and architecture models and advise on other top rated industry Next Generation Firewalls (NGFW), DNS servers, email security gateways, and Secure Web gateways. • Consult with DoITT on Net-Flow packet collection and analysis, pcap/tcpdump, Security information and event management (SIEM), TACACS and RADIUS, SMTP, DNS and TCP/IP protocols, situational awareness and the ability to adapt to the changing threat landscape; key knowledge areas include consultation on network topologies and core network communications protocols, network packet trace and IPS, IDS, and HIPS • Develop and coordinate system lifecycle management with ITSM including developing or reviewing asset, configuration, change of security systems; research and analyze significant and complex security problems; and perform special projects and initiatives as assigned. Expected deliverables this engineer may produce include • Security policies • Security Device Cabling and port assignments documentation • Rack elevation diagrams and as-built documentation • Document Security device naming convention • Document IPv4 and IPv6 addressing • Detailed Layer 2 and Layer 3 Visio diagrams • Detailed traffic flow Visio diagrams and Security Rules • Security engineering documentation • Test methodologies and reports Thanks, Arjun D -Sr Executive Recruiter Sonoma Consulting, Inc. Tel: 630-922-5091 Fax: 630.756.4181 Email: [email protected] Web: www.sonomaconsulting.net -- You received this message because you are subscribed to the Google Groups "Citrix and Sap problems" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/citrix-and-sap-problems. For more options, visit https://groups.google.com/d/optout.
