Senior Security Engineer

Posted: 2 months ago

Description:

The Senior Security Engineer works directly with clients and the SecureWorks SOC and responds to security incidents and remediates if needed to mitigate any security vulnerabilities

Essential Functions

  • Interprets and implements customer change requests on managed security device platforms, primarily firewalls and IDS/IDP devices
  • Meets service level agreements related to device change implementation
  • Accesses (remotely) and manages devices at various customer locations
  • Answers and authenticates inbound calls and emails from technical clients (Network Administrators/Application Owners,) creates tickets for all assigned work, and addresses client requests and issues
  • Troubleshoots problems including: security-related issues (firewalls, IPS, understanding of common protocols in security like DNS, SSL, TLS, HTTP(s), ftp, etc.,) routing and switching, protocol problems, WAN/LAN failures, and performance issues across a distributed segmented network infrastructure with multiple security zones
  • Maintains and administers perimeter security systems such as firewalls and intrusion detection systems
  • Maintains good working knowledge in VPN technologies and security protocols like IPsec, ISAKMP, SSL, PKI, RADIUS, TACACS, EAP, LDAP etc.
  • Operates and maintains LAN / WAN equipment and related service
  • Follows up with customer contacts to ensure satisfactory completion of work
  • Acts as escalation point for operational issues and support
Additional Specific Duties and Responsibilities
  • Participates in on-call rotation with team members
  • Maintains Dell SecureWorks if possible
  • Maintains Cisco FireSight Management (FirePower)
  • Maintains Cisco Client/Client management
Minimum Requirement for the Job:
  • Preferred Bachelor's degree (or equivalent) in Computer Science or a related field, plus 12+ years in the Information Systems industry.
  • And or CCIE Security Certification
  • Hands on experience implementing and managing large-scale network infrastructure consisting of switches, routers, firewalls, load balancers etc. from leading industry vendors like Cisco, Juniper, Palo Alto, F5 etc.
  • Experience in designing, implementing and managing network environments using Cisco or Juniper routers switches and firewalls.
  • 5+ years' experience implementing and managing VPN solutions.
  • 5+ years' experience integrating Security components (firewalls, IPS, Web filtering etc) with network infrastructure.
  • Hands on experience with one or more of the following firewall platforms or technologies: Umbrella, Client, Firepower, AMP, CheckPoint, Cisco ASA/PIX, Juniper/Netscreen, SonicWall, Palo Alto, IP Filter or iptables
  • Hands on experience with one or more of the following IDS/IPS platforms: TippingPoint, Sourcefire, Imperva, Cisco IPS, or ISS RealSecure
  • Understands basic network principles related to TCP/IP
  • Possesses technical aptitude and interest related to networking, Internet, and computer technologies
  • Administers routers, switches, firewalls, wireless
  • Resolves trouble tickets
  • Monitors and tests network performance and provides network performance statistics and reports
  • Evaluates and recommends near- and long-term network capacity needs
  • Creates and maintains documentation as it relates to network configuration
  • Conducts research on network products, services, protocols, and standards to remain abreast of developments in the networking industry
  • Two years of experience working in external customer facing environment for support
  • Must possess excellent oral and written communication skills in English
  • Ability to demonstrate high standards of conduct and ethics as well as appropriate judgment, independence, and discretion
  • Strong analytical, interpersonal, and relationship building skills
  • Strong work ethic and personal drive to excel
  • Strong sense of urgency and commitment to get the job done
  • Superior negotiation, coordination, and conflict resolution skills
  • Ability to use (and learn new) complex systems, technologies, and applications
  • Ability to adapt to change quickly and multi-task
Desired/Preferred Qualifications
  • One or more vendor certifications for enterprise level security platforms such as CCSA, CCSE, CCIE
  • Non-vendor specific certifications such as Linux+, Security+, Network+ or SANS/GIAC Certifications (GCFW, GCIA, and GCIH)