Travelport
Overview
CYBER SECURITY ENGINEER II (FIREWALL) | ORG TEAM | ATLANTA, GA. Travelport is the brains behind many travel bookings and technology used to book travel. We’re hiring for a Cyber Security Engineer II to join the Blue team and drive forward the approach, management, and compliance of network security solutions. How you’ll make an impact:
The Senior Cyber Security Engineer II serves as the first line of defense, implementing and managing Travelport’s network protection solutions and ensuring security and compliance requirements including network segmentation. Your role in action:
You will design, build, and manage the network security infrastructure of IT systems, including firewalls, proxies, Web Application Firewalls (WAFs), IDS/IPS, and related components. You will provide technical leadership across architecture, design, engineering, implementation, security, and ongoing management of firewall, WAF, proxy, IDS and IPS platforms; participate in strategic planning for active/active architectures, data center integration, cloud network infrastructure, disaster recovery, and resiliency; collaborate to drive security input for remote access technologies, SD-WAN, certificate management, and related initiatives; provide advanced escalation support; document processes; contribute to cyber incident response; and support audit and compliance activities. Responsibilities
Design, build, and manage the network security infrastructure of IT systems including firewalls, proxies, Web Application Firewalls (WAFs), IDS and IPS. Provide technical leadership in the architecture, design, engineering, implementation, security, and management of enterprise firewall, WAF, proxy, IDS and IPS platforms to meet security and compliance requirements including network segmentation. Contribute to strategic planning of active/active architectures, multiple data center integration, cloud network infrastructure, disaster recovery (DR) and resiliency. Partner with peers to drive strategy and implementation of initiatives requiring security input (remote access technologies, SD-WAN, certificate management, etc.). Provide advanced technical and operational escalation support to Technical Operations on network elements, firewall logs, proxy, WAF, and IDS/IPS. Document and disseminate processes and procedures for network security. Provide forensics input to Cyber Incident Response teams. Support audit and compliance activities. Qualifications
At least seven years of experience implementing, configuring, integrating and supporting network security/firewall solutions such as CheckPoint, Fortinet, ForcePoint, Akamai, and Tipping Point. Experience with CheckPoint firewall solutions (Provider-1, MLM, VSX, R80), Fortinet (FortiManager, FortiGate, FortiAnalyzer), Tipping Point or other IPS, and ForcePoint. Experience using network security technologies to achieve PCI scope reduction (network segmentation) and firewall policy optimization/consolidation. Expert knowledge of IP addressing and subnetting; experience with firewall policy management solutions (e.g., Tufin). Experience following change control procedures and analyzing impacts of changes for disruptions/issues. Ability to work on a 24/7/365 on-call team and be available for occasional nights and weekends. Experience working with internal and external customers for required changes, providing input and best practices for infrastructure/application integration. Strong verbal and written communication skills. Preferred
Certifications such as Cisco (CCNP, CCNA), Check Point (CCSA, CCSE), Fortinet Certification. Experience with cloud or SaaS-based CDN/DNS/WAF technologies (Akamai, Cloudflare). Experience with PKI and certificates; network security methodologies for cloud environments (AWS/Azure) including AWS CloudFront, AWS WAF, and Security Groups. Experience with Netskope web proxy; working knowledge of routing protocols (RIP, OSPF, BGP); Linux command line skills; scripting (Bash, Perl, Python, PowerShell); and automation scripting with ServiceNow/firewall management APIs. What we offer
Discover why Travelport teams love working here. We offer a comprehensive benefits program, including medical, dental, vision, disability and life insurance, 401(k) match, generous paid time off, hybrid work model, and a volunteer day. We also offer a New Child leave policy: 16 weeks paid time off for the birthing parent and 8 weeks for the non-birthing parent. Salary Range:
$130,000 - $135,000. Final salary will be set based on factors including internal equity, experience, and education. Our application process is quick, easy, and hassle-free. We are an equal opportunities employer and will consider all qualified applicants on the basis of skills and abilities. Reasonable accommodations are available for applicants with disabilities during the application or interview process. Seniority level: Mid-Senior level Employment type: Full-time Job function: Engineering and Information Technology
#J-18808-Ljbffr
CYBER SECURITY ENGINEER II (FIREWALL) | ORG TEAM | ATLANTA, GA. Travelport is the brains behind many travel bookings and technology used to book travel. We’re hiring for a Cyber Security Engineer II to join the Blue team and drive forward the approach, management, and compliance of network security solutions. How you’ll make an impact:
The Senior Cyber Security Engineer II serves as the first line of defense, implementing and managing Travelport’s network protection solutions and ensuring security and compliance requirements including network segmentation. Your role in action:
You will design, build, and manage the network security infrastructure of IT systems, including firewalls, proxies, Web Application Firewalls (WAFs), IDS/IPS, and related components. You will provide technical leadership across architecture, design, engineering, implementation, security, and ongoing management of firewall, WAF, proxy, IDS and IPS platforms; participate in strategic planning for active/active architectures, data center integration, cloud network infrastructure, disaster recovery, and resiliency; collaborate to drive security input for remote access technologies, SD-WAN, certificate management, and related initiatives; provide advanced escalation support; document processes; contribute to cyber incident response; and support audit and compliance activities. Responsibilities
Design, build, and manage the network security infrastructure of IT systems including firewalls, proxies, Web Application Firewalls (WAFs), IDS and IPS. Provide technical leadership in the architecture, design, engineering, implementation, security, and management of enterprise firewall, WAF, proxy, IDS and IPS platforms to meet security and compliance requirements including network segmentation. Contribute to strategic planning of active/active architectures, multiple data center integration, cloud network infrastructure, disaster recovery (DR) and resiliency. Partner with peers to drive strategy and implementation of initiatives requiring security input (remote access technologies, SD-WAN, certificate management, etc.). Provide advanced technical and operational escalation support to Technical Operations on network elements, firewall logs, proxy, WAF, and IDS/IPS. Document and disseminate processes and procedures for network security. Provide forensics input to Cyber Incident Response teams. Support audit and compliance activities. Qualifications
At least seven years of experience implementing, configuring, integrating and supporting network security/firewall solutions such as CheckPoint, Fortinet, ForcePoint, Akamai, and Tipping Point. Experience with CheckPoint firewall solutions (Provider-1, MLM, VSX, R80), Fortinet (FortiManager, FortiGate, FortiAnalyzer), Tipping Point or other IPS, and ForcePoint. Experience using network security technologies to achieve PCI scope reduction (network segmentation) and firewall policy optimization/consolidation. Expert knowledge of IP addressing and subnetting; experience with firewall policy management solutions (e.g., Tufin). Experience following change control procedures and analyzing impacts of changes for disruptions/issues. Ability to work on a 24/7/365 on-call team and be available for occasional nights and weekends. Experience working with internal and external customers for required changes, providing input and best practices for infrastructure/application integration. Strong verbal and written communication skills. Preferred
Certifications such as Cisco (CCNP, CCNA), Check Point (CCSA, CCSE), Fortinet Certification. Experience with cloud or SaaS-based CDN/DNS/WAF technologies (Akamai, Cloudflare). Experience with PKI and certificates; network security methodologies for cloud environments (AWS/Azure) including AWS CloudFront, AWS WAF, and Security Groups. Experience with Netskope web proxy; working knowledge of routing protocols (RIP, OSPF, BGP); Linux command line skills; scripting (Bash, Perl, Python, PowerShell); and automation scripting with ServiceNow/firewall management APIs. What we offer
Discover why Travelport teams love working here. We offer a comprehensive benefits program, including medical, dental, vision, disability and life insurance, 401(k) match, generous paid time off, hybrid work model, and a volunteer day. We also offer a New Child leave policy: 16 weeks paid time off for the birthing parent and 8 weeks for the non-birthing parent. Salary Range:
$130,000 - $135,000. Final salary will be set based on factors including internal equity, experience, and education. Our application process is quick, easy, and hassle-free. We are an equal opportunities employer and will consider all qualified applicants on the basis of skills and abilities. Reasonable accommodations are available for applicants with disabilities during the application or interview process. Seniority level: Mid-Senior level Employment type: Full-time Job function: Engineering and Information Technology
#J-18808-Ljbffr