Support network security efforts such as firewall audits, network design reviews and internal security consulting.
Audit Information systems and network devices against corporate security standards.
Oversee network security functions such as intrusion detection and vulnerability scan programs.
Keep current with new developments in security industry including alerts, bugs, vulnerabilities, and malware and evaluate / report on their potential business impact.
Keep current with technology advancements in the network security space in areas of network design, security products (e.
g., firewalls, IPS / IDS, WAF, wireless security, VPN), and threat vectors.
Develop reports and metrics to communicate team accomplishments and security status of various environments.
Analyze system errors, logs and / or anomalies, as well as specific network performance issues in order to ensure maximum uptime and service quality and assess trends that may ultimately result in degradation of service.
Some travel may be required.
On call duties may be required.
Experience / Skills Required :
8+ years experience in Information Technology with a minimum of 5+ years in corporate or information security with experience in technical audits, analysis and design.
2+ years experience preferred in the management and administration of network infrastructure - routers, switches, load balancers, etc.
in a high-availability infrastructure on a 24x7x365 basis.
Ability to view the network infrastructure from an attacker’s perspective.
Experience performing technical audits of computer systems and network for compliance purposes.
Experience in network infrastructure security with hands-on experience with security objects (e.g., intrusion detection signatures, firewalls, VPNs, WAF, network management).
Experience in network traffic analysis and network-level forensics based on log events and packet capture data.
Experience and a working knowledge of general security administration processes and frameworks, metrics collection and reporting.
Experience and working knowledge of Unix / Linux and Windows host operating systems.
Strong functional knowledge of TCP / IP required.
Familiarity with open source network defensive / offensive tools a plus.
Familiarity with data center networking (e.g., STP, IGP, BGP).
Formal hardware training and / or certifications (e.g., CCNA, CCNP, CCSP / CCNP Security).
Formal security training (e.g., SANS, Offensive Security) and / or certifications (GCFW, GCIA, GCIH, GSEC, GPEN, OSCP) a plus.
Perl and / or shell scripting a plus.
Candidate MUST have extensive experience working in structured change management processes for highly available networks.
Strong communication, organizational, interpersonal, time management, and project management skills.
Strong interpersonal and relationship-building skills, conducive to team development.