Cloud Network Security Engineer
NICE Systems
- Cochabamba
- Permanente
- Tiempo completo
- Support and maintain Network Security platforms and processes including Next Generation Firewalls, SIEM, IDS/ IPS, Virtual Private Networks, and Cloud Security Technologies.
- Partner with senior team members and peer teams to assess the overall security posture of the network environment including security event detection, triage and threat analysis.
- Assist with the health, performance, stabilization and tuning of all network security infrastructure
- Assess existing security technologies to establish opportunities for improved network protection controls
- Ensure security solutions, policies and procedures are sufficient to meet and respond to threats to our data and network infrastructure. Recommend and provide technical support processes, metrics and SLAs
- Review and respond to reports pertaining to network security and compliance.
- Ensure network is in compliance with audit needs related to but not limited to Fedramp, SOC2, etc.
- Help to ensure compliance with corporate Governance, Security-Risk and Audit policies, procedures, and best practices.
- Provide support to senior team members on all company security initiatives and be a point of escalation and engagement for security related aspects.
- Assist with developing technical documentation, policies, and procedures for network security application use and support.
- 5+ years work experience within an internetworking environment.
- Experience with Cloud technologies: AWS, Azure, GCP
- Experience dealing with Infrastructure as code
- Scripting experience with JSON/YMAL for CloudFormation
- Expert Level experience with Palo Alto and F5 load balancers
- Expert Level experience with network switching and routing
- Extensive knowledge of networking technologies, topologies, and protocols. (TCP/IP, BGP, OSPF, SNMP, Multicast, VRRP, HSRP, switching technologies)
- Expert-level understanding of internetworking technologies and tools, including TCP/IP, netflow/sflow, access-control lists, policy routing, firewalls, peering, and DNS
- Significant OSPF and BGP design, implementation, and troubleshooting experience
- Experience with MPLS environments
- Experience with Authentication services such as TACACS+, RADIUS, and RSA SecurID
- Working knowledge of IPV6
- Intermediate Visio skills
- Working knowledge of SIP
- Experience working with Management Systems and SNMP
- Excellent interpersonal, oral and written communication skills along with prior experience in a dynamic, project-oriented team environment.
- A demonstrated history of learning new technologies and adapting them to solve complex problems
- Must pay strong attention to detail and have good organizational skills.
- Experience in Layer-4 through Layer-7 switching environments
- Experience with hardware load balancing - ServerIron/ADX, GSLB, SSL termination
- Network scripting languages
- Experience with Terraform