Ford Motor Company
Overview
Get AI-powered advice on this job and more exclusive features. Job Description In this role, the responsibilities include implementing and maintaining firewall rules, coordinating incident response, and ensuring compliance. Creating and managing secure connections for external partners is a core function, often using Cisco's VPN capabilities. Candidates are expected to be proficient with a range of networking protocols, including TCP/IP, switching protocols, BGP/OSPF and have s trong troubleshooting skills for layer 2 and 3 issues. This role also require to assess requested security policy changes, process firewall change requests, update URL/DNS (block) lists. Support includes, installation, configuration, integrations, troubleshoot and performance tuning. Ensure readiness of new security capabilities and feature upgrades in inline network security products. Create playbooks for security procedures, document security configurations, and communicate best practices. Responsibilities Deep understanding of network architecture, routing, firewall design, and access control policy development. Experience with log analysis, traffic inspection, and firewall performance tuning. Demonstrated ability to produce clear documentation for configuration baselines, rule justifications, and system changes. Develop scripts or utilize automation tools to streamline firewall management, policy updates, and log analysis. Perform configuration updates, such as modifying configurations, signature definitions or implementing new policies on various network security tools, as directed. Support the Major technical Incident Management Calls and Change Controls through STRONG Technical Network Knowledge, Operational capability, and good Communication skills. Collaborate with global leaders to support 24/7 network availability on a worldwide scale. Advocate and ensure that high quality Follow the Sun (FTS) is delivered to receiving teams. As well as support on-call schedule and shifts are available. Supports implement best practices and processes for Network & Security Operations services to maintain availability, reliability, scalability, and security. Support for effective SRE Monitoring and FSO (Full Stack Observability) on system performance and overall health, troubleshoot issues, and implement corrective actions. Collaborate with the Network LAN/WAN & security Engineering/development teams to optimize infrastructure for application performance and scalability. Be able to leverage network management tools in the identification and response to security connectivity incidents and faults (Netcool, SevOne, Thousand Eyes, Splunk, Wireshark). Configure and manage security policies, access controls, and firewall rules. Assist with security compliance audits to verify completeness of required configurations and verify system hardening. Participate in the problem investigation connectivity incidents related to security devices, provide recommendations to improve reliability and availability, or reduce recovery time. Support assurance of up-to-date SW releases, targeted LDOS, and PSIRTS (security updates). Serve as an escalation point for security incidents and service requests. Qualifications Basic Qualifications Bachelor of Science degree or a combination of education and relevant work experience. Technical Expertise: In-depth knowledge of Palo Alto Prisma Access, Cisco Umbrella, IPS, and ZTNA. Specialized Skills: Advanced understanding of F5 Load Balancers, including automation capabilities. Firewall and Analysis Tools: Experience with Cisco firewalls, Viavi Observer, and Wireshark for packet analysis. End User Security: Familiarity with end-user security strategies, including host-based firewalls, transparent proxies, and Network Access Control (NAC). Project Leadership: Experience leading or participating in enhancement projects for on-premises proxies like Cisco WSA, and potential Cloud Proxy migration efforts. Scripting and Deployment: Ability to engineer and deploy updates to support changes in PAC files using JavaScript. Troubleshooting Skills: Strong experience in troubleshooting network security environments and understanding network troubleshooting tools. Networking Services: Significant technical, functional, and hands-on experience with networking services and operations. Collaboration and Influence: Highly collaborative with the ability to influence team members and provide strong viewpoints as needed. Engineering Experience: Minimum of 3 years of experience engineering Cisco IOS-based firewalls/VPNs in production environments. Network Security Experience: At least 6 years in network security engineering roles within medium to large-scale enterprises and a total of 10 years of enterprise IT experience. Nice To Have Qualifications/Skills & Expertise Ability to develop and deliver detailed issue summary and concise messages to Supervisor / Management. Possess a high tolerance for ambiguity and ever-changing dynamic environment. Security Certification such as PCNSE (Palo Alto Networks Certified Network Security Engineer), Prisma SDWAN, ZTNA, Zscaler Proxy. Network Certifications such as CCNP (Cisco Certified Network Professional) or CCIE (Cisco Certified Internetwork Expert) Advocate for DevOps mindset and culture, collaboration, flexibility, and cross domain knowledge Strong technical experience in Routing / Switching/ Wireless/Load Balancers/ Cisco ACI & SDWAN Good Communication, Business Development & Negotiation skills Work with external Vendors like Cisco/F5,Palo Alto or WAN service providers to POC for upcoming technologies as per Ford requirements. Experience with Rally tools and Agile delivery. Good to have Experience with Cisco DNA, SevOne, SD-Access, ISE, Wireshark, Gigamon, Netcool, Splunk and Thousand Eyes(Zscaler), Network automation Scripts Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, If you need a reasonable accommodation for the online application process due to a disability, please call 1-888-336-0660. # LI-Remote
#J-18808-Ljbffr
Get AI-powered advice on this job and more exclusive features. Job Description In this role, the responsibilities include implementing and maintaining firewall rules, coordinating incident response, and ensuring compliance. Creating and managing secure connections for external partners is a core function, often using Cisco's VPN capabilities. Candidates are expected to be proficient with a range of networking protocols, including TCP/IP, switching protocols, BGP/OSPF and have s trong troubleshooting skills for layer 2 and 3 issues. This role also require to assess requested security policy changes, process firewall change requests, update URL/DNS (block) lists. Support includes, installation, configuration, integrations, troubleshoot and performance tuning. Ensure readiness of new security capabilities and feature upgrades in inline network security products. Create playbooks for security procedures, document security configurations, and communicate best practices. Responsibilities Deep understanding of network architecture, routing, firewall design, and access control policy development. Experience with log analysis, traffic inspection, and firewall performance tuning. Demonstrated ability to produce clear documentation for configuration baselines, rule justifications, and system changes. Develop scripts or utilize automation tools to streamline firewall management, policy updates, and log analysis. Perform configuration updates, such as modifying configurations, signature definitions or implementing new policies on various network security tools, as directed. Support the Major technical Incident Management Calls and Change Controls through STRONG Technical Network Knowledge, Operational capability, and good Communication skills. Collaborate with global leaders to support 24/7 network availability on a worldwide scale. Advocate and ensure that high quality Follow the Sun (FTS) is delivered to receiving teams. As well as support on-call schedule and shifts are available. Supports implement best practices and processes for Network & Security Operations services to maintain availability, reliability, scalability, and security. Support for effective SRE Monitoring and FSO (Full Stack Observability) on system performance and overall health, troubleshoot issues, and implement corrective actions. Collaborate with the Network LAN/WAN & security Engineering/development teams to optimize infrastructure for application performance and scalability. Be able to leverage network management tools in the identification and response to security connectivity incidents and faults (Netcool, SevOne, Thousand Eyes, Splunk, Wireshark). Configure and manage security policies, access controls, and firewall rules. Assist with security compliance audits to verify completeness of required configurations and verify system hardening. Participate in the problem investigation connectivity incidents related to security devices, provide recommendations to improve reliability and availability, or reduce recovery time. Support assurance of up-to-date SW releases, targeted LDOS, and PSIRTS (security updates). Serve as an escalation point for security incidents and service requests. Qualifications Basic Qualifications Bachelor of Science degree or a combination of education and relevant work experience. Technical Expertise: In-depth knowledge of Palo Alto Prisma Access, Cisco Umbrella, IPS, and ZTNA. Specialized Skills: Advanced understanding of F5 Load Balancers, including automation capabilities. Firewall and Analysis Tools: Experience with Cisco firewalls, Viavi Observer, and Wireshark for packet analysis. End User Security: Familiarity with end-user security strategies, including host-based firewalls, transparent proxies, and Network Access Control (NAC). Project Leadership: Experience leading or participating in enhancement projects for on-premises proxies like Cisco WSA, and potential Cloud Proxy migration efforts. Scripting and Deployment: Ability to engineer and deploy updates to support changes in PAC files using JavaScript. Troubleshooting Skills: Strong experience in troubleshooting network security environments and understanding network troubleshooting tools. Networking Services: Significant technical, functional, and hands-on experience with networking services and operations. Collaboration and Influence: Highly collaborative with the ability to influence team members and provide strong viewpoints as needed. Engineering Experience: Minimum of 3 years of experience engineering Cisco IOS-based firewalls/VPNs in production environments. Network Security Experience: At least 6 years in network security engineering roles within medium to large-scale enterprises and a total of 10 years of enterprise IT experience. Nice To Have Qualifications/Skills & Expertise Ability to develop and deliver detailed issue summary and concise messages to Supervisor / Management. Possess a high tolerance for ambiguity and ever-changing dynamic environment. Security Certification such as PCNSE (Palo Alto Networks Certified Network Security Engineer), Prisma SDWAN, ZTNA, Zscaler Proxy. Network Certifications such as CCNP (Cisco Certified Network Professional) or CCIE (Cisco Certified Internetwork Expert) Advocate for DevOps mindset and culture, collaboration, flexibility, and cross domain knowledge Strong technical experience in Routing / Switching/ Wireless/Load Balancers/ Cisco ACI & SDWAN Good Communication, Business Development & Negotiation skills Work with external Vendors like Cisco/F5,Palo Alto or WAN service providers to POC for upcoming technologies as per Ford requirements. Experience with Rally tools and Agile delivery. Good to have Experience with Cisco DNA, SevOne, SD-Access, ISE, Wireshark, Gigamon, Netcool, Splunk and Thousand Eyes(Zscaler), Network automation Scripts Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, If you need a reasonable accommodation for the online application process due to a disability, please call 1-888-336-0660. # LI-Remote
#J-18808-Ljbffr