Sr. Transport Security Engineer

Description:
You will be a part of the Network Security organization specifically focusing on firewall policy management, firewall policy auditing, ACL management and VPN infrastructure.
The Transport Security Policy & Auditing (TSPA) team provides evaluation and approval for network firewall rule requests across the our network. The team also holds ongoing management responsibility for ACLs as well as performs auditing of security controls within the major network environments. In addition, the team has plan, build and run responsibilities for the VPN infrastructure which entails vendor site to site, vendor client to site, and employee VPNs.
The role is empowered to make technical and operational decisions in regards to TSPA and the best practices surrounding security. The role requires someone with the advance ability to adapt and apply information to new scenarios and technologies. In addition, ability to adjust quickly based on conflicting priorities to meet the needs of the business.
The role is expected to know or have a working knowledge of modifying firewall rule sets, changing policies, modifying ACLs, creating VPN tunnels and troubleshooting issues with the various infrastructures by studying the network traffic flows.
EXPERIENCE:
Proven technical leadership and experience in one or more of the following areas:

• Telecommunications
• Networking
• IT systems with success deploying/operating firewall and VPN infrastructure.

• Expertise in different VPN technologies including site-to-site and remote access VPNs.
• Hands on experience with Audit for Firewalls configurations and ACLs.
• Advanced knowledge on Palo Alto, Juniper, and F5 firewalls.
• Advanced knowledge on firewall management tools such as Panorama, Space, Big-IQ and FireMon.
• Advanced knowledge on other networking vendors and technologies is a plus; Arista, switching & routing, spanning tree, OSPF, BGP, TCP/IP, DHCP, DNS, end to end QOS, VRRP, LACP, MLAG, ACLs.
• Working knowledge of monitoring and visibility platforms like Splunk and Elasticsearch.
• Excellent time management, teamwork and communication skills.
• Ability to interact with customers, vendors, and project managers on a regular basis to support implementations, change management and troubleshooting.
• Experience working in a leading ticketing system and prioritizing workflow based on criticality and urgency.
• Strong networking, routing and switching background with a focus on firewalls.

Additional Skills: OSI Model, TCP/IP Protocol Suite, ICMP, TCP, UDP, DHCP, NAT, HTTP, DNS, MPLS, VPN, IP Addressing and Subnetting, IPv4/IPv6, IPSec – VPN, LAN/WAN Technologies.
Even better if you have:

• A Master's degree in Engineering, Computer Science, or related field.
• Knowledge of 4G/LTE technology and architecture.
• Knowledge of 5G technology and architecture.
• Experience managing and implementing firewall infrastructure for large scale environment.
• Advance knowledge of configuration management frameworks like Ansible.
• Advance knowledge of Fortinet VPN configuration.
• Scripting language like Python or PowerShell to create automation.
• Knowledge of IP networking, tracing, VPNs, DNS, load balancing, and firewalls.

Certifications: CISSP, CCNA, CCNP, JNCIS-DC/JNCIP-DC, PCNSE