Network Security Engineer
Michael Page
- Warszawa, mazowieckie
- Stała
- Pełny etat
- Provide technical engineering security expertise for company-wide projects, implementing security standards and baselines, and researching advancements in all security technologies that would benefit secure business growth.
- Lead penetration testing requirements, findings, and mitigations.
- Lead vulnerability management program working closely with the patching team to limit the vulnerability attack surface
- Be or become the lead SME for various security tools including CASB, the Vulnerability Scanning Suite, EPP, etc to maintain and improve the functionality of our security tools.
- Maintain awareness of industry methods and techniques for information security and Enterprise Architecture and make recommendations for their adoption where appropriate.
- Investigate, recommend, and assist with implementing security solutions that provide detection, prevention, containment, and deterrence mechanisms to protect and maintain the integrity of data and network resources.
- Define security product requirements, conduct research, evaluation, testing, configuration, and implementation, to include identify management, access control, and intrusion prevention solutions.
- Provide Tier 3 support for alerts that are generated from the FQ SOC's findings from the events that are monitored.
- Ensure guiding procedures for incident response are in place, effective and up to date, to include periodic computer incident response team (CIRT) activation to validate response procedures.
- Provide investigative and computer forensics support.
- Assess the risk and policy adherence of every security system change request.
- Use process management tools to track information about security systems administration requests and security events.
- Track, generate and provide effective reporting for use by system administrators, business leadership and end-users; recommends and implements an effective event correlation solution that analyses the output from these and other security tools in a cost-effective manner.
- Author security system and application processes for both operation and management, including as-build service configuration documents.
- Conduct network/system forensics and traffic analysis using protocol and intrusion detection analyzers.
- Perform detailed and routine assessment to ensure use of established security policies, practices and expectations across all platforms, operating systems, and applications.
- Promote security awareness and training through presentations and regular communications as part of an end user and IT system administrator education program.
- Collaborate with Information Systems Security Senior Manager/Director in the development and implementation of an IT focused security education and awareness program.
- Bachelors' Degree or Equivalent Experience in Computer Science, EE, Data Network Security Architecture and Design.
- Minimum 5 years of experience running security solutions on network/security engineering/security operations.
- Cisco networking and/or Palo Alto certification highly preferred.
- Knowledge of IT security controls - firewalls, SIEM platforms, NAC, CASB, DLP, IPS/IDS, encryption, authentication, tokenization, XDR/EDR tools and desktop virtualization security.
- Broad knowledge of network security practices, designs, methodologies, tools, and processes.
- Comprehensive knowledge of network architectures, equipment, and designs.
- Knowledge of computer/network forensics.
- Knowledge of vulnerability scanners and how to successfully implement and maintain an enterprise patching program.
- Security risk assessment skills.
- Working knowledge of information security related technologies and products (OSI based security).
- Working knowledge of the following technologies: Microsoft OS for Workstations/Servers , UNIX, firewall multi-layer design and implementation,, WANs, LANs, internet, intranets and network protocols (i.e., VPN, TLS, SSH, SFTP, TCP/IP, etc.), security assessment tools, vulnerability scanners, intrusion prevention systems, VMware, VDI, encryption, public key infrastructure (PKI).
- Proven abilities to analyze security risks, provide remediation recommendations and create comprehensive security documentation.
- Ability to function in a fast-paced entrepreneurial environment using persuasion, expertise, and judgment to affect change.
- Self-motivated with the ability to move multiple projects forward at one time.
- Willingness to work on improving your security knowledge for the areas that are currently not your strength.
- Discretion and sensitivity requiring absolute confidentiality.
- Strong attention to detail and follow through skills.
- Some travel via car or air to company locations required, which may require overnight stays.
- 100% remote
- B2B Contract
- International project environment
- Working in a team of highly skilled professionals