Domain Boundary Compliance Consultant

Title: Domain Boundary Compliance (DBCP)

Location: McLean, VA or Richmond, VA or Plano, TX (Hybrid) F2F Interview

Duration: 12 months+

The Domain Boundary Compliance Program exists to manage the risk associated with business applications that need to establish network connectivity between dissimilar network segment types by:

• Providing a set of allowable connectivity patterns
• Owning and operating the process for evaluating new connection requests between these dissimilar network segment types
• Processing exception requests for network connection requests that don't fall into the allowable connectivity patterns list

Responsibilities:

• Ensure policy and configuration changes to network security platforms (initially internet proxy and firewalls) are aligned with enterprise standards, have adequate business justification, and doesn t cause unmitigated risks or vulnerabilities before being deployed.
• Work with internet proxy platforms. Identify risk categories and threat level for internet access being requested
• Maintain proxy policies such as incorporating updates as new categories or threat levels are identified, extend policies as requests are implemented, and performing periodic reviews to ensure policies are not exposing Client to unmitigated risk such as data loss
• Work with IP address management, exception management, document repository, intranet sites, Microsoft Excel, Google Sheets, and other tools fluidly and efficiently
• Verify connection request details against systems of record to ensure they are accurately populated, work with the customer to correct of necessary
• Respond to customer requests for information or help in a timely manner, meet customer response time SLAs
• Work with customers as needed to resolve technical issues and provide guidance for how to proceed with a connection request
• Work with proxy, network, and firewall engineering teams to resolve technical issues and develop solutions for new use cases or connection patterns
• Support exception remediation activities
• Follow documented processes and procedures for processing requests and interacting with customers

Preferred Skills:

• 2+ years working with networking concepts including HTTPS, TLS, CIDR notation, RFC 1918 address space
• 2+ years of experience with internet proxy platforms such as Broadcom / Symantec and Sophos
• 2+ years of experience with firewall platforms such as Checkpoint and Palo Alto
• 1+ years of experience with cloud-based network security services such as AWS Security Groups, AWS VPC, Azure Network Security Groups, Azure VNET
• 1+ years of experience with firewall audit and compliance tools such as Tufin
• Professional certifications (AWS Certified Solutions Architect and Certified Information Systems Security Professional (CISSP), CompTIA Security +, ISACA CISM)

Regards,

Azam Mohammed

Direct: 551 264 7249

Email: Aazam (@) pullskill (dot) com