Job ID: JOB_ID_7074
Job Description:
We are seeking a highly skilled Network Security Engineer with hands-on experience in Palo Alto design, architecture, configuration, deployment, and management. The ideal candidate will possess strong knowledge and experience in Network Security Frameworks and be proficient with key technologies such as Cisco ACI, Palo Alto Firewalls, and Fortinet (as a replacement for Cisco ASA). Experience with Microsoft Defender, Zscaler, and Carbon Black is also required.
The role involves managing and maintaining network infrastructure, including switches, and addressing vulnerabilities. You will be responsible for network security, including firewall rule management, upgrades, VPN configuration, log analysis, and Security Operations Center (SOC) functions. Some physical work in the datacenter may be required.
Key Responsibilities:
- Develop and enforce comprehensive network security strategies aligned with industry standards such as NIST and ISO 27000 to protect organizational assets.
- Configure and manage network security devices including Cisco ASA firewalls, Cisco ISE for identity management, IDS/IPS systems for threat detection, and VPN solutions for secure remote access.
- Conduct vulnerability assessments and penetration testing to identify potential weaknesses within LAN, WAN, SAN, and cloud infrastructure environments like AWS and Google Cloud Platform.
- Monitor network traffic using SIEM tools such as Splunk or SolarWinds to detect suspicious activities, perform log analysis, and initiate incident response procedures promptly.
- Implement system hardening techniques on operating systems including Linux (Debian, CentOS, Ubuntu), Windows, macOS, and UNIX variants to minimize attack surfaces.
- Manage encryption protocols such as IPsec, SSL/TLS, PKI (Public Key Infrastructure), and FIPS standards to secure data in transit and at rest across diverse platforms.
- Lead incident recovery efforts by executing disaster recovery plans, system security plans, and threat detection & response strategies in accordance with FISMA and FedRAMP compliance requirements.
Required Skills and Qualifications:
- Extensive knowledge of computer networking concepts including LAN/WAN architecture, routing protocols (OSPF, BGP), TCP/IP stack, DHCP/DNS services, and network protocols.
- Hands-on experience with firewall management (Cisco ASA), network support tools (SolarWinds, PRTG), load balancing solutions, and high availability configurations.
- Proficiency in scripting languages such as Python or Bash for automation of security tasks and system administration activities.
- Strong understanding of vulnerability management frameworks like DREAD or CVSS; experience with vulnerability research and assessment tools.
- Familiarity with cloud computing platforms (AWS, Azure) including cloud architecture design principles for secure deployment.
- Knowledge of identity & access management (IAM), RBAC policies, SSO integrations (Active Directory), LDAP directories, GPOs, and open-source tools like Ansible or Terraform for infrastructure automation.
- Ability to analyze network traffic using tools like Fiddler or Wireshark; conduct computer forensics; implement system security hardening measures; perform threat intelligence analysis.
- Understanding of compliance standards such as PCI DSS for payment systems; experience with incident management frameworks like ITIL; adherence to SDLC processes for secure software deployment.
- Join us to be at the forefront of cybersecurity innovation! Your expertise will help shape resilient defenses against evolving cyber threats while advancing your career in a collaborative environment committed to excellence in information security.
Special Requirements
GC WILL NOT WORK ON C2C. NEED LOCAL TO NY/NJ/PA. ONSITE INTERVIEW.
Compensation & Location
Salary: $75 – $95 per year (Estimated)
Location: New York, NY
Recruiter / Company – Contact Information
Email: joy.yotta@gmail.com
Recruiter Notice:
To remove this job posting, please send an email from
joy.yotta@gmail.com with the subject:
DELETE_JOB_ID_7074