Sr. Network Security Engineer

Job Description: The Sr. Network Security Engineer works within a team of Engineers. The engineer must demonstrate extensive experience working with Network Security centric platforms at large organizations. The engineer must interpret the published Network Security Standards and implement solutions that conform to these standards. They must possess excellent documentation and communication skills and shall take part in strategy conversations to meet business needs. The Sr. Network Security Engineer reports to the Network and Communication Services group and provides support across several business and technology groups. Key Responsibilities: Must perform duties with a self-starting demeanor Document well-analyzed implementation and reversion plans for all changes Administer and maintain Network Security platforms, such as, but not limited to: Firewalls Web Secure Gateways Network Admission Control DNS, DHCP, and IPAM Proactively engage with peers and key stakeholders across the organization to complete objectives Engage in Network or Security Architecture design discussions to meet the needs and requirements of the business Respond in a timely manner to business correspondence Regularly engage and complete service request tickets through the IT Service Manager platform Maintain written documentation for new and existing processes and procedures Participate in risk assessments and address any findings, as necessary Implement and manage solutions in adherence to the SOP for Network Security Ensure inclusion of security standards and align with relevant reference documents from both internal and reference organizations (e.g., PCI/DSS, NIST, ISO, and CIS) Stay abreast of changes in network security protocols and monitoring practices to maintain effective visibility and functionality Perform changes in approved maintenance windows during nights and weekends, as necessary Participate in a rotating on-call schedule ADDITIONAL INFORMATION: 100% Remote candidates are acceptable Top 3 Skills: Expert in Web Application Firewall (WAF) implementation, ideally Akamai Good experience with Terraform, DNS, DHCP, and IPAM Knowledge of PCI/DSS, NIST, ISO, and CIS. Mandatory Skills: Conduct duties and behaviors with a cybersecurity centric mindset Bachelor's degree in Computer Networking, Cybersecurity, or similar field of study, or equivalent industry experience Experience with the design and management of a PCI/DSS compliant network Working knowledge to identify all network segments subject to PCI/DSS requirements Ability to thoroughly analyze change requirements and execute implementation with minimal negative impact 5+ years of experience designing, implementing, managing, and troubleshooting Palo Alto firewalls Must have extensive experience troubleshooting a hybrid network with multiple vendor technologies Must have a thorough understanding of the OSI model to deduce and quickly identify problem areas Extensive technical knowledge in at least 3 of the following areas: Network Segmentation Techniques, Secure Web Gateways, Next-Generation Firewalls, Network Admission Control Systems, Hybrid Cloud Environments (AWS, Azure), Wireless Security, or DHCP, DNS and IPAM (DDI), Virtual Private Network (VPN), and Web Application Firewall (WAF) Strong understanding of network technologies, including, but not limited to: Routing and Switching Protocols, IPsec and GRE tunnels, RADIUS, TACACS+, VRFs Working knowledge of cybersecurity controls and technologies, such as Intrusion Detection/Prevention Systems (IPS/IDS), Security Incident Event Managers (SIEM), Public Key Infrastructure (PKI), Tunnel Layer Security (TLS), Endpoint Detection and Response (EDR), and Threat Intelligence platforms Excellent verbal and written communication skills Ability to prioritize multiple simultaneous projects Desired Skills: Industry recognized Network Security Certification preferred An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against based on disability. EEO IS THE LAW. CC Pace invites any applicant and/or employee to review the Company's written Affirmative Action Plan. This plan is available for inspection upon request. If you are an individual with a disability and would like to request a reasonable accommodation as part of the employment selection process, please contact us. #J-18808-Ljbffr