AVP, Firewall Security Engineer

Architecture, Authentication, CCSE, CISSP, CheckPoint, Cloud, Clustering, Communication skills, Configuration, Continuous improvement, Documentation, Education, Engineering, Firewall, IDS, IPS, IPsec, IT management, Implementation, Intrusion detection, Linux, Load balancing, MPLS, Malware analysis, Mentorship, Packet analysis, Microsoft Windows Azure, Microsoft Windows administration, Monitoring, Networking, Palo Alto, Process improvement, Project management, Remote access, Research, Routing, SIEM, SSL VPN, Security, Security architecture, Security engineering, Software, Switches, Systems engineering, TCP/IP, Technical writing, Training, Troubleshooting, Vulnerability management
Full Time
$80,000 - $100,000
Work from home available

Job Description

Responsibilities include, but are not limited to the following:

  • Design, implement, and manage the configuration, monitoring, and maintenance of enterprise-grade security products including next-generation firewalls, intrusion detection and prevention platforms, and threat and vulnerability management platforms.
  • Analyze data, make recommendations for remedial action and/or security enhancements based on detailed analysis and ensure proper communication of issues and/or recommendations to both technical and non-technical audiences. This includes remediation efforts for day to day reported trouble tickets from internal customers.
  • Understanding adversarial Tactics, Techniques and Procedures (TTPs) in order to design and implement detection and prevention techniques across multiple environments including network, endpoint, and applications, particularly through use of the bank SIEM solution.
  • Define and drive security-based process improvements through project participation and continuous improvement efforts. Research, recommend and implement new and emerging technology platforms that are in line with security architectural principles.
  • Provide hands-on technical leadership and technical mentoring to other engineers.
  • Create and maintaining security documentation including security architecture diagrams, procedures, and Bank security standards.


  • 2+ years of hands-on experience implementing, configuring, and managing enterprise-grade next-generation security platforms.
  • Palo Alto PCNSE and/or ACE certification preferred.
  • Checkpoint Certified Systems Engineer (CCSE) Certification preferred.
  • CISSP or similar security and management certifications preferred.
  • Subject Matter Expert level knowledge in designing and managing complex security platforms including firewall, IPSEC and SSL VPN, IPS/IDS, Advanced Networking, Acceleration & Clustering technologies. Excellent written and oral interpersonal communication skills, with a strong ability to produce technical documentation.

Education and Experience:

  • College degree or equivalent combination of training and experience plus at least 2+ years working as a security engineer/architect with experience maintaining next-generation security platforms.
  • Experience in large scale enterprise and service provider networks.
  • Experience with project management methodologies.
  • Experience in securing cloud environments such as Microsoft Azure is a plus.

Skills/Knowledge: Demonstrable knowledge and understanding of the following:

  • Network topologies / design: routing, switching, and MPLS/ELan technologies
  • Palo firewall technology, design, and administration
  • Global load balancing technology design and support
  • IP networking (TCP/IP and packet analysis)
  • Network and system attack knowledge
  • Remote access design and implementation with various dual-factor authentication methods
  • Two factor Authentication systems
  • Advanced anti-malware platforms
  • Knowledge of Linux and Windows system administration


Dice Id : 10146278
Position Id : 6958109
Originally Posted : 1 month ago
Have a Job? Post it