Uploaded 3/14/2017 | Network Security Engineer | Rochester, MI

Uploaded 3/14/2017 | Network Security Engineer | Rochester, MI

Mike Riley's picture

GENERAL SUMMARY:
The Network Security Engineer works in collaboration with all functional areas relative to information technology systems, networks,
applications, voice and data communications, and computing services within the organization. The position will be responsible for
providing implementation and support of the company's multi-site network and security infrastructure. Provides consulting and
regulatory compliance guidance on strategic and technical initiatives and is knowledgeable of information security best practices and
regulatory and compliance requirements that impact security for the enterprise.

The Network Security Engineer is responsible for the installation, troubleshooting and subsequent proactive monitoring of firewalls,
VPNs, security controls, and policies. The Network Security Engineer deals with the overall health of the network relating to security
and assessments in a multi-vendor, enterprise class networked environment including, but not limited to ensuring PCI and HIPAA
compliance.
The position adheres to change management and configuration management policies and procedures, monitors and troubleshoots
network and security systems in a large network environment, uses diagnostic tools, and facilitates the selection and implementation
of networks, communications, security, and systems infrastructure to match the needs of the corporation.

REPORTING/RELATIONSHIPS:

The Network Security Engineer reports to the Network Security Services Manager. This position will work in a collaborative effort
with IT to assure security programs and technical controls are in compliance with policies, applicable laws and regulations.
Additionally, this role will work closely with Enterprise Security Architects to develop solutions and be able to test and implement
those solutions with minimal supervision.

DUTIES AND RESPONSIBILITIES:
 Install, configure, and support firewalls, wireless technologies, DLP, IPS, and VPN connections
 Perform daily tasks of the team to include but not limited to firewall rule creations or changes, switch port configurations,
monitoring of log data from all network and security devices
 Provide tier 2 and 3 technical support; assist and provide technical leadership on all network and security devices and
software within the environment
 Monitor and track scheduled system maintenance activities in applicable tools, analyzing the duration and potential impact to
customers and ensuring they are consistent with approved times for these activities
 Identify opportunities to enhance, and improve security initiatives within the environment
 Work with architecture team to develop solution blueprints and construct test and pilot scenarios for the solution, prior to
implementation
 Work with operational staff to implement tested solutions, develop documentation and aid in KTLO tasks
 Implement, develop, test, support, and evaluate security-focused tools and services
 Implement and support appropriate information security architecture, including but not limited to:
 Juniper Firewalls
 IDS and IPS
 Netscaler Load balancers
 Blue Coat Proxies
 Junos Pusle SSL VPN Gateways
 Citrix Access Gateway
 Contributes to the development and maintenance of the Information Privacy and Security Office Services Catalog and
Corporate Information Security policies and procedures
EDUCATION / EXPERIENCE REQUIRED:
 Bachelor's Degree in Information Systems, Computer Science or a related field is desired
 5+ (five plus) years of experience with security technologies including: Intrusion Detection Systems, Security Information
Management systems, Firewall Configuration and Management; Log Analysis and Management tools, Packet Capture and
Analysis Tools
 5-7 (five-seven) years of experience in a technical position
 Strong understanding of TCP/IP stack and TCP/IP troubleshooting tools (tcpdump/protocol analysis)
 Support the incident responses with network data and solutions
 HIPAA, Payment Card Industry Data Security Standard (PCI), ISO 27000, ISO 9000 knowledge desired
 Extremely strong multi-tasking and analytical/troubleshooting skills
 Knowledge of Citrix and other remote access technologies considered a must
 Strong experience and detailed technical knowledge in security engineering, system and network security, authentication and
security protocols, cryptography, and application security
 Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
 Experience with leading firewall platforms (e.g., Juniper, Checkpoint, Cisco, etc)
 Experience with leading Load balancer platforms (Citrix, F5, etc)
 Proven ability to communicate professionally and effectively in written or oral format, along with the ability to think
analytically and solve problems is required.
 Knowledge of information security best practices, ISO standards, and common risk framework
 Service focused team player who has the ability to lead and mentor team members
 Excellent customer service and interpersonal skills demonstrated both over the phone and face-to-face in order to
communicate technical information in non-technical terms.
 Consensus building and collaborative interpersonal skills
 Ability to work under pressure, establish priorities and respond with urgency
 Self-motivated with excellent verbal/written and excellent presentation skills
CERTIFICATIONS:
 ITIL v3.0 certification preferred or within 6 months
 Applicable certification strongly preferred (e.g., CISSP, CISSP - ISSEP, GIAC, etc.) or obtained within 1 year of employment
If interested, reply with resume to:
David Nelson, Managing Director
david@nelsonstaff.com
1-248-650-0770
Fax: 248-650-0772