Network Security Engineer (Cisco/ Fortinet/Palo Alto firewalls)

Job Title: Network Security Engineer (Cisco/ Fortinet/Palo Alto firewalls)
Job location: New York, New York ( 3 days onsite)
Job type: Contract W-2

Must have: Cisco Firepower, Fortinet and Palo Alto firewalls

A global bank is seeking a Network Security Engineer to join their New York office. The Network Security Engineer must have hands-on experience in network security management. Lead the design and administration of network security infrastructure, focusing on critical components including DNS, F5 Load Balancers, Fortinet and Palo Alto firewalls, VPNs, proxies, Remote Access and DMZ connectivity. Network Security Engineer must bring extensive experience managing Cisco Firepower, Fortinet and Palo Alto firewalls, including DMZ design implementation.

Infrastructure Oversight: Lead the design and administration of network security infrastructure, focusing on critical components including DNS, F5 Load Balancers, Fortinet and Palo Alto firewalls, VPNs, proxies, Remote Access and DMZ connectivity.

Technology Initiatives: Drive technology projects aimed at enhancing cybersecurity and improving network performance in alignment with organizational goals.

Continuous Monitoring: Ensure optimal network performance through continuous monitoring, dashboard creation, promptly addressing any security incidents.

Documentation Management: Maintain comprehensive documentation, including network security asset inventories, diagrams, procedures and vendor contacts, to support operational efficiency and facilitate effective communication.

Cross-Department Collaboration: Collaborate with infrastructure teams to resolve network-related challenges and ensure seamless operations across departments.

Audit and Security Coordination: Work closely with audit and IT Security teams to provide necessary documentation and implement remediation plans as required.

Staff Mentorship and Training: Mentor and train junior engineering staff, fostering a culture of growth and skill development within the network team.

Vulnerability Assessments: Conduct vulnerability assessments and manage patching processes to effectively mitigate and report security risks across the AMER region.

Security Reporting: Develop and deliver regular security reports to Leadership, highlighting key metrics, incidents, and trends to inform strategic decision-making.

LOD1 Security Management: Manage Line of Defense 1 (LOD1) network security controls and request as specified by the IT Risk Department.

Strategy Alignment: Coordinate with AMER and Head Office IT Security teams to assure alignment on security strategies and policies.

Tool Proficiency: Proficient knowledge of security tools such as SIEM, Splunk, Centreon and Qualys for effective monitoring and incident response.

Bachelor's degree in computer science, Information Technology, Cybersecurity, or a related field; Master's preferred.

8+ years of hands-on experience in network security management, preferably within the financial services industry.

Extensive experience managing Cisco Firepower, Fortinet and Palo Alto firewalls, including DMZ design implementation.

Relevant certifications such as Fortinet NSE 4/5, Palo Alto Networks Certified Network Security Engineer (PCNSE), Cisco CCNP Enterprise and CCNP Security is a plus. Highly desirable CISSP, CISM.