Director IT Infrastructure Network Security

If you're looking for a meaningful career, you'll find it here at Webster. Founded in 1935, our focus has always been to put people first--doing whatever we can to help individuals, families, businesses and our colleagues achieve their financial goals. As a leading commercial bank, we remain passionate about serving our clients and supporting our communities. Integrity, Collaboration, Accountability, Agility, Respect, Excellence are Webster's values, these set us apart as a bank and as an employer.

Come join our team where you can expand your career potential, benefit from our robust development opportunities, and enjoy meaningful work!

We are seeking a Senior Network Technician that designs, deploys, and modernizes and maintains Websters secure expansive Network Infrastructure. In this role, you will be the Operations and Project leader and coordinator for Network Control & Security Services utilizing a wide range of devices, tools and vendors including but not limited to: Palo Alto Firewall management suites, Cisco/Meraki network equipment, Citrix and F5 load balancers and AWS, Azure and Google Clouds offerings, various monitoring and security related tools and more.

What you will do

• Drive development of strategy, vision, and roadmap for attaining effective and efficient Infrastructure Security Controls
• Escalation point for highest level Network and Infrastructure Troubleshooting initiatives
• Deliver operational stability in close collaboration with the Infrastructure Engineering, Network Services, Service Management, Information Security, and IT Operations and Retail teams.
• Analyze and resolve complex networking, integration, automation, and security issues.
• Oversee the developments and management of service based KPI and KRI as well as service level reporting for all above mentioned Infrastructure security services
• Supply metrics that demonstrate the current risk state, indicators of progress, and directory services business alignment
• Interface with Corporate Information Security to ensure all policy and standards are adhered to.
• Work closely with technology and business stakeholders across Enterprise and associated organizations
• Proactively identify and assist in the resolution of challenges and issues that may impair the team's ability to meet strategic, business, and technical goals
• Securely manage connectivity, authentication, and authorization solutions for on premise and cloud solutions
• Define and lead in the design of programs that support and align with cloud-based online service strategies and engineering requirements for evolving security services, mechanisms, and safeguards
• Engage with development teams during operational security reviews, and provide leadership and security design guidance
• Monitor technology and security developments and ensure the company's infrastructure security framework follows industry best practices
• Play a key and influential role working with others, in groups, in cross-functional settings, and with diverse stakeholders internally and externally
• Responsible for identifying opportunities for the automation of tasks, processes, or entire solutions and acting on them, as well as identifying any opportunities for improvement in the environment.
• Participate in or lead troubleshooting and incident resolution of complex high severity incidents
• Develop detailed architecture, standards, design, and implementation documentation
• Analyze current Infrastructure Security Services environment to identify both technical and operational opportunities and assist in the development of continuous improvement action plans
• Responsible for incident response and investigation including preparation, documentation, and coordination with other teammates and teams, assisting with eradication and recovery, and any necessary post-incident activities.
• Prepare to design, implement, and maintain complex security technologies and projects that support the underlying security policies and procedures to protect information assets.
• Provide input to the creation of new and updates to existing policies, standards, and practices as necessary.
• Design, test, implement, maintain, and support current and future complex information security technologies, processes, and procedures. Assist the design and development of security controls that ensure the safety of information assets and protect from unauthorized access or intentional destruction.
• Participate in projects related to information security regulatory compliance and the implementation and maintenance of all information security programs, processes, and technologies. Assure the implementation of appropriate security configurations or re-configurations and work with appropriate teams to execute them as required.

Skills and Abilities

• Advanced proficiency with Palo Alto Networks firewalls (PAN-OS, Panorama, GlobalProtect)
• Deep knowledge of TCP/IP, DNS, DHCP, VLANs, routing protocols (OSPF, BGP)
• Experience with App-ID, User-ID, Threat Prevention, URL Filtering, and SSL Decryption
• Highly Self-motivated with strong problem-solving skills
• A can-learn, can-do attitude, that works well in a collaborative and fast paced service team.
• Skill in recognizing and categorizing types of vulnerabilities and associated attacks.
• Advanced proficiency with configuration and management of security policies, NAT rules, and VPNs
• Demonstrated skill in using protocol analyzers and performing packet-level analysis.
• Deployment and management of Meraki MX, MS, and MR devices including configuration of SD-WAN, Auto VPN, Layer 7 traffic shaping, and client policies

Education Qualifications

• Bachelor's Degree in Arts/Sciences (BA/BS) in IT related field or 10+ years' work preferred

Experience Qualifications

• 8-9 years Demonstrated understanding and working mastery of networking and security-related technologies & practices, including in-depth understanding of firewalling theory and practices, authentication and authorization systems, endpoint protection, encryption, segmentation strategies, vulnerability management, secure remote access, virtualization technologies, etc. required
• 10-11 years Strong/diverse technical background in performance tuning and security awareness related to enterprise networking, firewall, server infrastructure, operating systems, and related infrastructure required
• 5-7 years Advanced experience with Cisco, Palo Alto, Meraki suites of products required
• 3-4 years Solid understanding of Cloud Technologies (Azure, AWS, Google Cloud, etc.) required
• 10-11 years Demonstrated experience contributing and collaborating effectively as an informal leader in a high-functioning team required
• 10-11 years Successful experience coordinating and completing multiple tasks within established and changing deadlines required
• 3-4 years Strong presentation skills with experience addressing and interfacing with executives and technical staff required
• 3-4 years Experience with regulatory compliance requirements required
• 8-9 years Advanced knowledge and experience with firewall administration, IPS, IDS, URL Filtering, network security, remote access, site-to-site VPN, IPSEC & SSL VPN, remote authentication software, external DNS and internet proxy required
• 0-2 years Experience with SEIM products; experience with SPLUNK preferred

#LI-Hybrid

#LI-FO1

Webster Financial Corporation and its subsidiaries ("Webster") are equal opportunity employers that are committed to sustaining an inclusive environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, marital status, national origin, ancestry, citizenship, sex, sexual orientation, gender identity and/or expression, physical or mental disability, protected veteran status, or any other characteristic protected by law.