Sr. Network Security Engineer

Role: Sr. Network Security Engineer 

Duration: 6 Months Long Term Contract

Location: Remote (EST)

USC/GC

ABOUT THE ROLE:

Seniority Level/Target years of experience:         

At least 5 years of experience

Top 3-5 Technical Skills:

• Top 3 Skills: Network troubleshooting, firewall configuration, proxy configuration
• Mandatory Skills:
• Conduct duties and behaviors with a cybersecurity centric mindset Bachelor’s degree in Computer Networking, Cybersecurity, or similar field of study Experience with the design and management of a PCI/DSS compliant network Working knowledge to identify all network segments subject to PCI/DSS requirements Ability to thoroughly analyze change requirements and execute implementation with minimal negative impact 5+ years of experience designing, implementing, managing, and troubleshooting Palo Alto firewalls Must have extensive experience troubleshooting a hybrid network with multiple vendor technologies. Must have a thorough understanding of the OSI model to deduce and quickly identify problem areas Extensive technical knowledge in at least 3 of the following areas: Network Segmentation Techniques, Secure Web Gateways, Next-Generation Firewalls, Network Admission Control Systems, Hybrid Cloud Environments (AWS, Azure), Wireless Security, or DHCP, DNS and IPAM (DDI), Virtual Private Network (VPN) Strong understanding of network technologies, including, but not limited to: Routing and Switching Protocols, IPsec and GRE tunnels, RADIUS, TACACS+, VRFs Working knowledge of cybersecurity controls and technologies, such as Intrusion Detection/Prevention Systems (IPS/IDS), Security Incident Event Managers (SIEM), Public Key Infrastructure (PKI), Tunnel Layer Security (TLS), Endpoint Detection and Response (EDR), and Threat Intelligence platforms Excellent verbal and written communication skills Ability to prioritize multiple simultaneous projects

Desired Skills:

Industry recognized Network Security Certification preferred

Responsibilities:

• Must perform duties with a self-starting demeanor
  Document well analyzed implementation and reversion plans for all changes
  Administer and maintain Network Security platforms, such as, but not limited to:
  Firewalls
  Web Secure Gateways
  Network Admission Control
  DNS, DHCP, and IPAM
  Proactively engage with peers and key stakeholders across the organization to complete objectives
  Engage in Network or Security Architecture design discussions to meet the needs and requirements of the business
  Respond in a timely manner to business correspondence
  Regularly engage and complete service request tickets through the IT Service Manager platform
  Maintain written documentation for new and existing processes and procedures
  Participate in risk assessments and address any findings, as necessary
  Implement and manage solutions in adherence to the SOP for Network Security
  Ensure inclusion of security standards and align with relevant reference documents from both internal and reference organizations, (e.g., PCI/DSS, NIST, ISO, and CIS)
  Stay abreast of changes in network security protocols and monitoring practices to maintain effective visibility and functionality
  Perform changes in approved maintenance windows during nights and weekends, as necessary
  Participate in a rotating on-call schedule

Job Description:

The Sr. Network Security Engineer works within a team of Engineers at OneMain. The engineer must demonstrate extensive experience working with Network Security centric platforms at large organizations. The engineer must interpret the Network Security Standards published by OneMain and implement solutions that conform to these standards. They must possess excellent documentation and communication skills and shall take part in strategy conversations and to meet business needs.

The Sr. Network Security Engineer reports to the Network and Communication Services group and provides support across several business and technology groups at OneMain.

Key Responsibilities:

Must perform duties with a self-starting demeanor

Document well analyzed implementation and reversion plans for all changes

Administer and maintain Network Security platforms, such as, but not limited to:

Firewalls

Web Secure Gateways

Network Admission Control

DNS, DHCP, and IPAM

Proactively engage with peers and key stakeholders across the organization to complete objectives

Engage in Network or Security Architecture design discussions to meet the needs and requirements of the business

Respond in a timely manner to business correspondence

Regularly engage and complete service request tickets through the IT Service Manager platform

Maintain written documentation for new and existing processes and procedures

Participate in risk assessments and address any findings, as necessary

Implement and manage solutions in adherence to the SOP for Network Security

Ensure inclusion of security standards and align with relevant reference documents from both internal and reference organizations, (e.g., PCI/DSS, NIST, ISO, and CIS)

Stay abreast of changes in network security protocols and monitoring practices to maintain effective visibility and functionality

Perform changes in approved maintenance windows during nights and weekends, as necessary

Participate in a rotating on-call schedule

Additional Information:

• Position is Remote
• Top 3 Skills: Network troubleshooting, firewall configuration, proxy configuration
• The contract can/will be extended, no current possibility for FTE conversion

Skill/Experience/Education

Mandatory SkillsConduct duties and behaviors with a cybersecurity centric mindset Bachelor’s degree in Computer Networking, Cybersecurity, or similar field of study Experience with the design and management of a PCI/DSS compliant network Working knowledge to identify all network segments subject to PCI/DSS requirements Ability to thoroughly analyze change requirements and execute implementation with minimal negative impact 5+ years of experience designing, implementing, managing, and troubleshooting Palo Alto firewalls Must have extensive experience troubleshooting a hybrid network with multiple vendor technologies. Must have a thorough understanding of the OSI model to deduce and quickly identify problem areas Extensive technical knowledge in at least 3 of the following areas: Network Segmentation Techniques, Secure Web Gateways, Next-Generation Firewalls, Network Admission Control Systems, Hybrid Cloud Environments (AWS, Azure), Wireless Security, or DHCP, DNS and IPAM (DDI), Virtual Private Network (VPN) Strong understanding of network technologies, including, but not limited to: Routing and Switching Protocols, IPsec and GRE tunnels, RADIUS, TACACS+, VRFs Working knowledge of cybersecurity controls and technologies, such as Intrusion Detection/Prevention Systems (IPS/IDS), Security Incident Event Managers (SIEM), Public Key Infrastructure (PKI), Tunnel Layer Security (TLS), Endpoint Detection and Response (EDR), and Threat Intelligence platforms Excellent verbal and written communication skills Ability to prioritize multiple simultaneous projects

Desired Skills Industry recognized Network Security Certification preferred