F5 Security Engineer

for Cincinnati Bell Technology Solutions in Cincinnati, OH

Report
Skills:
F5, BIG IP, BIG IQ, TCP/IP, IPSEC, SNMP, Syslog, HTTP(S), SSH, DHCP, DNS, RDP, LDAP, ICMP, SMTP 
Location:
Cincinnati, OH
Area Code:
513 
Travel Req:
none 
Telecommute:
no 
Pay Rate:
NEG 
Tax Term:
FULLTIME CON_IND CON_W2 CON_HIRE_CORP CON_HIRE_IND CON_HIRE_W2 
Length:
Fulltime 
Posted:
11-14-2014 
Position ID:
206949 
Dice ID:
10119424 

CBTS is currently searching for a F5 Security Engineer to our existing support team. This team is working with cutting edge technology and enforcing layered security best practices. You will be identifying potential threats, responding to security violations, assisting in root cause determination of incidents and recommending corrective action. This role will take part in daily support and project tasks. Candidates must have strong security experience in a larger enterprise environment. This is a large team with several levels of security support and this position has great career advancement potential for the right person.

Day to Day Responsibilities:

  • Provide day-to-day operational support of security solutions at 150 networked locations across southeastern Michigan.
  • Escalation support for the following primary infrastructure components:
  • Internet Content Filtering - Bluecoat
  • Caching - Bluecoat / Citrix Netscaler
  • Firewall Protection - Juniper JUNOS / NetScreen
  • Remote Access - Juniper Secure Access SSLVPN / Nortel Contivity
  • Service Delivery Controller (Load Balancing, SSL Offload, Caching, App Firewall) - Citrix
  • Netscaler
  • Internet Anti-virus Protection - Bluecoat
  • Enterprise SIEM
  • Two Factor Authentication - RSA
  • Digital Certificates allocation & maintenance
  • Receives daily trouble tickets and service requests assigned to the NSO team from the incident management system
  • Ensures resolution of trouble tickets in queue are in alignment with established service levels
  • Interacts with client community on a daily basis
  • Participate in configuration & deployment of security infrastructure (see above list) involved in project solutions, and provide documentation for support & maintenance
  • Identify ways to improve and optimize support & maintenance of security infrastructure
  • Utilize methods, such as IP packet capturing, to perform analysis of production problems & troubleshoot escalated support issues
  • Participate in alternating after-hours on-call schedule
  • Assist with lab testing and evaluation of hardware and software in pursuit of a technical solution
  • Document and conduct change controls to complete project tasks and break/fix solutions

Must have:

  • Very Strong Firewall experience (Juniper, Checkpoint, Cisco, Fortinet, Barracuda, SonicWall, or Palo Alto firewalls)
  • Experience with secure web gateways (Bluecoat, Websense, Symmantec, Trend Micro or McAfee)
  • Experience with Citrix, F5, Cisco, Radware, Zeus or Barracuda application/service delivery controllers
  • Experience with remote access VPNs (Juniper, Citrix, Cisco, F5, or SonicWall)
  • Experience with vulnerability scanner products
  • Demonstrated experience with security solution planning, implementation, and maintenance
  • Understanding of IP packet captures using Wireshark, Sniffer, Network Physics, Infinistream, etc.
  • Perform analysis of security related problems such as; blocked traffic due to firewall rules & policies, Internet proxy issues, VPN access restrictions
  • Implementation and maintenance of IPSec and SSL VPNs
  • Ability to multi-task project load, on-call rotation, KTLO tasks and meetings Nice to have:
  • Strong network skills with hands on experience using Juniper, Avaya or Cisco switches and routers
  • Working knowledge of routing protocols and their integration with security appliances
  • Working knowledge of TCP/IP, IPSEC, SNMP, Syslog, HTTP(S), SSH, DHCP, DNS, RDP, LDAP, ICMP, SMTP protocols are all very helpful
  • Working knowledge of element/device management, configuration management, Active
  • Directory, proactive monitoring and alerting, VMWare, virtual meeting and database apps are all helpful
  • Some level of scripting, algorithm or regular expression knowledge applicable to managing security devices is a plus such as Linux/Unix awk/sed/grep, Python, Perl, or VBScript

PREFERRED CERTIFICATIONS (Examples):

  • CISSP, SSCP, CEH
  • SANS GIAC
  • Juniper JNCIA-FWV, JNCIA-SSL, JNCIA-JUNOS, JNCIA-IDP, JNCIA-EX, JNCIP, JNCIS
  • Citrix, F5, Cisco or Barracuda load balancer technician
  • RSA/CA - RSA Certified Administrator (Systems Engineer preferred)
  • Bluecoat Security
  • TCP/IP weapons school attendance
  • Checkpoint CCSA
  • Nortel/Avaya NCSS, NCSE
  • CCNA or Advanced CCNA in Security, Voice or Wireless
Cincinnati Bell Technology Solutions