Previous Job
Previous
Lead/Senior IT Network and Security System Engineer - 18-01118
Ref No.: 18-01118
Location: Cary, North Carolina
Position Type:Contract
Start Date / End Date: 05/14/2018 to 11/30/2018
Our client is seeking a Lead/Senior IT Network and Security System Engineer.

The Senior/Lead Network and Security System Engineer will join a dynamic, fast-paced and growing team in the technology Innovation group within a Global telecom organization located in Cary, North Carolina. This team functions as a startup, within a large organization.
The environment entails working intimately within a small group with diverse experience.
The team consists of senior level members in both technical and business expertise- from technical expertise ranging from Mobile/Cellular to Wi-Fi to IoT to software development; to business expertise-from product to program management to business development.
The team is working in a lean and agile environment to create high-class products/ services in very fast-paced to support the current company products/services.
This candidate must be a self-starter with the ability to collaborate with team and vendors to come up with outside the box solutions to some challenging customers' problems.
They must be hands on, with innovative problem solving capabilities and have a strong technical expertise in networking and cybersecurity systems related technologies from architectures to system design, implementation, and support.
They must be a self-driven and are willing to work in a startup environment to do what it takes to get the job done. Leveraging their technical depth and breadth and ability to develop new skills and learn new technology and tools to help create and deploy products or services that meets and exceeds customers' needs. They must possess excellent communication skills both writing and verbal and are comfortable communicating with diverse internal and external stakeholders from customers to management at all levels.

Responsibilities:
  • Work as the Sr. enterprise Network & Security System engineer-a leading role to architect, design, implement, configure, support, maintain and monitor networks including routers, switches (Cisco, and others), firewalls (Palo Alto Network and Cisico), SSL VPN, wireless access points, and IDS/IPS devices for stability, reliability, scalability and compliance with security and regulatory requirements for all of the sites
  • Implement and support network (WAN/CAN/MPLS/LAN) traffic analysis to diagnose and resolve issues for preventative maintenance
  • SLA-driven network and resource allocation (initial and ongoing)
  • QoS: performance, scalability, footprint, resilience, integration, manageability
  • Security and  Policy-driven redundancy
  • Lead research and evaluation of latest network technologies and solutions trends especially cloud-based solutions, to enhance network and security solutions and standards based on requirements, best practices, cybersecurity and technical knowledge.
  • Nice to have- Virtual networking, NFV and SDN, NFVI, Edge Compute, OpenStack
  • Develops detailed designs using best of breed network security equipment including firewalls, intrusion prevention systems, and secure access control systems.
  • Supports, and maintains security including web filtering services. May perform other network system  and security support responsibilities as assigned as part of technology breath
  • Support and monitor the organization's local and wide area networks, as well as internet connectivity. This includes but is not limited to the management of all routers, switches, firewalls, IPS devices, Cisco VoIP servers, and VPN connectivity.
  • Management of the organization's web filtering, SIEM, and security analytics solutions, host-based IPS or anti-malware solutions
  • Management of any Windows and/or Linux servers and applications that support the network/security hardware, phone system, video conferencing, or network connectivity
  • Serves as the first point of escalation for any issues in the aforementioned areas
  • Responsible varies per project depending on the needs including the design of the network, security, and voice environments
  • Responsible for using all tools at their disposal to monitor and identify any internal and external threats, vulnerabilities, or malware.
Secondary duties and responsibilities:
  • Lead/Co-Lead Server and cloud activities Administration in a multi-sites environment.
  • Support, maintain core network services like DHCP, DNS, in AD environment.
  • Inventory, monitor and analyze storage, network, and computing usage and security issues and contribute to capacity planning initiatives. In particular, monitor resource usage on servers and plan for hardware upgrades.
  • Handle tier-2 support and field supports for issue resolution or escalation.
  • Contribute to mentoring staff and knowledge to the global team.
  • Contribute to creating documentation and customer facing training
Requirements:
  • Excellent communications skills both verbal and written
  • University degree in technical field with a minimum of 7 years' experience and on-going IT training
  • Firewall/Palo Alto Network and VPN configurations, Riverbed WAN acceleration, Juniper SSLVPN, email firewall, Juniper Netscreen/SRX Firewall/VPN appliances, Checkpoint
  • BGP/OSPF routing protocols.
  • Cloud-based Network monitor and management
  • Network hardware including wireless, routers, firewalls, modems and hubs.
  • Current Enterprise/Carrier-class firewall platforms.
  • Network Security assessment tools and encryption technologies.
  • MPLS and other vendors management
  • Security concepts behind the AAA (authentication, authorization, and auditing) framework.
  • Valid CCNA and a CCNA Security or other security certifications are a plus.
  • IOS routers and switches
  • Experience with NX-OS a plus.
  • ASA firewalls required and Comfortable with access lists on routers, switches, and firewalls.
  •  ASA command line interface, IOS, and ASA software upgrades/downgrades.
  • Able to quickly read a routing table and understand what path traffic will take, and why.
  • Dynamic routing protocols such as BGP, OSPF, & EIGRP, spanning tree and VLANs.
  •  L2 & L3 configuration on Cisco switches, IP subnetting & CIDR notation.
  • Administrative distance, OSI model and how this relates to troubleshooting.
  • VPN technologies including  experience configuring VPN's
  •  DNS experience including configuring DNS servers
  • Windows and Linux OS's.
  • Network Security best practices.
  • Web filtering, SIEM, and security analytics solutions, host-based IPS or anti-malware solutions
  • Windows and/or Linux servers and applications that support the network/security hardware and software, phone system, video conferencing, or network connectivity
  • Able to work independently while collaborating with the team, vendors and customers
  • Detail oriented with a drive to learn new things