| Perimeter Firewall Engineer - Hybrid - Plano, TX at Plano, Texas, USA |
| Email: shetty.m@kksoftwareassociates.com |
|
https://jobs.nvoids.com/job_details.jsp?id=2298170&uid= From: Mahesh Kumar, KK Associates LLC shetty.m@kksoftwareassociates.com Reply to: shetty.m@kksoftwareassociates.com Hi, We have a job opportunity with one of our clients. If you have any matching profiles, please get in touch with me. Role name: | Engineer | Role Description: | Provision and configure firewalls for customers, including Next-Generation Firewall (NGFW) devices and Zone-Based Firewalls (ZBFW) within the SD-WAN network. Develop and maintain rule sets for firewalls. Help determine tactics, techniques, and procedures (TTPs) for firewalls. Recommend improvements for IT systems and infrastructure. Perform patch management for MSP firewall tools and customer-provided firewall tools. Provides recommendations to leadership based on significant threats and vulnerabilities. Work with established policies to design and implement firewall rules and configurations across various platforms. Implement and document firewall changes based on customer specifications and requirements. Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources. Document and escalate incidents (including event history, status, and potential impact for further action) that may cause ongoing and immediate impact to the environment. Create and document procedures and work instructions for use by the firewall Engineering staff (Tier 2 through Tier 3). Train and mentor other engineers as needed. | Competencies: | Cisco Viptela (SDWAN), Firewall Administration - Security Management (IT IS) | Experience (Years): | 8-10 | Essential Skills: | This is an engineer role, and the candidate must be able to demonstrate ability to install, manage and maintain Firewalls in both on-premises and SD-WAN environments. Demonstrated experience in supporting Cisco Firepower and SD-WAN as an engineer is REQUIRED. Holding one or more Technical Certifications is REQUIRED. Holding one or more vendor-neutral certifications (e.g., Network +, CISM, CISSP) is a plus for this position. This position supports a customer out of AUSTIN, TX, and will provide 24x7 monitoring and management of the firewall infrastructure. This position is in direct support (on-site at customer facilities) of an AT&T customer in the government sector. AT&T provides Managed Service Provider (MSP) functions related to infrastructure operations, including Tier 1 through Tier 3 resource capabilities and activities such as network monitoring, threat detection, vulnerability management, and incident response. Requirements US Citizen. Local to Austin, TX (Highly Preferred, within one hour) Must be able to pass a CJIS background check process and other background checks to comply with customers contracts. Complete basic safety and compliance training to meet the customer requirements. Ability to work a rotating shift and on-call schedule as required. Eight (8) years of Network IT implementation and/or Network design experience. With five (5) years as a part of a perimeter defense team. The Preferred candidate holding one or more of the following industry certifications will be a plus. o Certified Ethic Hacker (CEH) or equivalent. o Certified Incident Handler (GCIH or ECIH). o Other Certs - such as CompTIA Networking+, any Cloud Certification, Azure Sentinel. The Preferred candidate holding one or more technical certifications will be a plus. o Cisco Certified Network Professional (CCNP) o Implementing Cisco SD-WAN Solutions | Desirable Skills: | Ability to configure, deploy, and troubleshoot Cisco Firewall Platforms. Ability to configure, deploy, and troubleshoot Cisco SD-WAN. Under limited supervision, support and develop Firewall policies. Design and implement firewall solutions using Cisco FMC and related technologies. Develop and maintain comprehensive firewall design documentation. Work with internal teams to integrate applications with firewall policies. Provide accurate and timely reporting on all project deliverables. Recommends secure and effective solutions for system/application development in compliance with Information protection standards. Ability to analyze firewall configurations and rule sets. Working knowledge of Cisco 8300/8500 series, FTD, FMC. Working knowledge of SIEM integration preferred. Working knowledge of Windows Active Directory Domains. Working Knowledge of various Linux OS. Strong Knowledge of information technology (IT) principles and methods (e.g., firewalls, demilitarized zones, encryption). Ability to interpret the information collected by network tools (e.g. Nslookup, Ping, and Traceroute). Knowledge of computer networking concepts and protocols, and related methodologies. Knowledge of data protection and privacy principles. Knowledge of cyber threats and vulnerabilities. Knowledge of encryption algorithms, cryptography, and cryptographic key management concepts. Knowledge of host/network access control mechanisms (e.g., access control list, capabilities lists). Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins). Knowledge of incident response and handling methodologies. Knowledge of network traffic analysis methods. Knowledge of new and emerging information technology (IT) and cyber defense technologies. Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]). Knowledge of key concepts in IT management (e.g., Release Management, Patch Management). Knowledge of system design tools, methods, and techniques. Knowledge of what constitutes a network attack and its relationship to both threats and vulnerabilities. Knowledge of defense-in-depth principles and network architecture. Knowledge of different types of network communication (e.g., LAN, WAN, MAN, WLAN, WWAN, SD-WAN). Knowledge of cyber defense policies, procedures, and regulations. Knowledge of the common attack vectors on the application layer. Knowledge of different classes of attacks (e.g., passive, active, insider, close-in, distribution attacks). Knowledge of cyber attackers (e.g., script kiddies, insider threat, nation/non-nation state sponsored). Knowledge of system administration, network, and operating system hardening techniques. Knowledge of cyber-attack stages | Country: | United States | Branch | City | Location: | Dallas, TX Plano Plano, TX | Keywords: | Perimeter Firewall Engineer - Hybrid | Email is the best way to reach me if I missed your call Regards, Mahesh Kumar Recruitment Lead KK Associates LLC. 8751 Collin McKinney Pkwy, # 1302, McKinney, TX 75070 555 Metro Place North, Suite # 100, Dublin, OH 43017 Email: shetty.m @kksoftwareassociates.com Web: www.kksoftwareassociates.com Keywords: information technology Ohio South Dakota Texas Perimeter Firewall Engineer - Hybrid - Plano, TX shetty.m@kksoftwareassociates.com https://jobs.nvoids.com/job_details.jsp?id=2298170&uid= |
| shetty.m@kksoftwareassociates.com View All |
| 11:32 PM 28-Mar-25 |