Network Security Engineer

Network, Security, Engineer, Management, Cisco, IBM, Application, Citrix, Firewall, SSL, Desktop, Micro, Hardware, Database, Oracle, VM, System, Windows, Linux, UNIX, CISSP, Microsoft Project, Python, MySQL
Full Time

Job Description

Network Security Engineer with hand-on experience in core Security tools: IPS/IDS, Compliance (Imperva, Vormetric), Vulnerability Management (Rapid7, Nessus), Proxy (Blue Coat, Zscaler, Aviatrix), who is also AWS-aware.
MUST BE LOCAL TO Denver, Colorado
  • Network Firewalls (Check Point, Fortinet, Palo Alto, Cisco, Juniper, McAfee, TippingPoint, etc.)
  • Intrusion detection/prevention (TippingPoint, McAfee, Sourcefire, IBM, etc.)
  • Network infrastructure (HPE, Aruba, Cisco, Juniper, etc.)
  • Sandboxing and Analytics (FireEye, Damballa, Check Point, Fortinet, Palo Alto, etc.)
  • Application security (F5, Imperva, Citrix, Akamai, etc.)
  • Network proxies (Blue Coat, Zscaler, McAfee, Websense, etc.)
  • Network admission control (NAC) (Aruba ClearPass, ForeScout, Cisco, etc.)
  • Firewall management and auditing (FireMon, Tufin, AlgoSec, RedSeal, Skybox, etc.)
  • Network packet brokers (Gigamon, IXIA, NetScout, etc.)
  • SSL decryption (Blue Coat, F5, Gigamon, IXIA, etc.)
  • Cloud access security brokers (CASB) (Symantec / Blue Coat / Elastica, Adallom, Skyhigh, etc.)

Additional Desired Skills and Experience:
  • Desktop security solutions (Symantec, McAfee, Bit9, Tanium, Trend Micro, Palo Alto Traps, CrowdStrike, Cylance, Bromium, etc.)
  • Network and/or desktop encryption (BitLocker, Check Point / Pointsec, Gemalto / SafeNet, Thales / Vormetric, etc.)
  • Public key infrastructure (PKI)
  • Hardware security modules (HSM)
  • Authentication solutions (RSA, Entrust, smartcard, biometrics, etc.)
  • Database security (Microsoft, Oracle, IBM, Imperva, etc.)
  • Data encryption solutions (HPE Secure Data, Gemalto / SafeNet, Thales / Vormetric, etc.)
  • Data loss prevention (DLP) (Symantec, McAfee, Websense, etc.)
  • Data governance (SailPoint SecurityIQ, etc.)
  • E-mail encryption (Proofpoint, HPE SecureData, Microsoft, etc.)
  • Virtualization on a large scale (VMware, Microsoft, Citrix, etc.)
  • VM segmentation (VMware NSX, Illumio, vArmour, GuardiCore, etc.)
  • Mobile device management (MobileIron, AirWatch, etc.)
  • System management and automation solutions (Symantec / Altiris, Microsoft, IBM / BigFix, etc.)
  • Log collection and aggregation (ArcSight, McAfee / Nitro, Splunk, IBM/QRadar, etc.)
  • OS Hardening (Windows, Linux, UNIX, etc.)
  • File integrity monitoring (Tripwire, NNT, etc.)


A technical bachelor degree is preferred.
  • Preferred security certifications:
  • CISSP
  • GIAC
  • Preferred vendor certifications:
  • Check Point
  • Palo Alto
  • Symantec / Blue Coat
  • F5
  • Zscaler
  • McAfee


  • Experience with Continuous Integration & Continuous Deployment tools and processes
  • Experience migrating applications from the enterprise to public cloud providers (e.g. Amazon, Google, or Microsoft)
  • Solid foundation in data structures, algorithms and software design with strong analytical and debugging skills.
  • Good understanding of private and public cloud design considerations and limitations in the areas of virtualization and global infrastructure, distributed systems, load balancing and networking, massive data storage, Hadoop, MapReduce, and security.
  • Knowledge of security technologies such as SIEM, Firewall/NGFW, EDR / DLP, UEBA and hybrid/Cloud Security environments
  • Superior communication skills with the ability to ask questions, escalate roadblocks early, and interact effectively at multiple levels in the organization
  • Working knowledge and experience with project and portfolio management tools, preferably Service Now, Microsoft Project, and/or Jira
  • Excellent verbal and writing skills and the ability to communicate effectively with all levels


EDUCATION & WORK EXPERIENCE REQUIRED
  • 8+ years of relevant professional system engineering or administration experience, with significant exposure to a variety of technologies and domains
  • 5+ years of advanced working knowledge of Windows and Linux operating systems
  • Experience automating server configurations to include standard build installations and system security hardening
  • Experience writing standard operating procedures, system requirements, and other technical documents
  • Experience centrally monitoring systems for alerts and incident management functions; preferable with Amazon CloudWatch
  • Scripting language experience (Python, NodeJs, etc.), Strong working knowledge of automation tools such as (Puppet, Jenkins, and Chef). Working knowledge of RDS database such as PostgresSQL, Oracle, and MySQL
  • Should possess one or more of the following certifications - CISSP, SANS GCIH, Vendor Certifications (CISO, Palo Alto, McAfee, IBM etc).
  • Bachelors degree required
Dice Id : 91115024
Position Id : 723
Originally Posted : 2 months ago
Have a Job? Post it