Senior Information Security Engineer - Firewall Micro-segmentation
Wells Fargo · McLean, VA · 3 days ago
Engineering$100k–$196k/yrFull-time
About the role
This role is a hybrid position, requiring 3 days a week in the office. No visa sponsorship or transfers are available for this position.
Responsibilities
- Design, document, test, maintain, and provide issue resolution recommendations for highly complex security solutions related to Micro-Segmentation
- Implement requirements and engage teams to create automation / orchestration for the enterprise's Micro-Segmentation solution
- Identify new tools and/or features to strengthen enterprise Micro-Segmentation capabilities
- Serve as a point of contact (POC) for enterprise Micro-Segmentation deployment
- Implement security designs on large projects for internal clients to ensure conformity with corporate information, security policy, and standards
- Collaborate and provide influence with all members of the microsegmentation team
- Define and coordinate automation strategies to integrate micro-segmentation with CMDB and user-facing portals, translating business and security requirements into actionable deliverables for development teams
Requirements
- 4+ years of Information Security Engineering experience, or equivalent through work experience, training, military experience, or education
- Experience with Micro-Segmentation security solutions including policy management
- Strong understanding of APIs and proficiency in working with JSON
- Experience with scripting, scripting skills such as Python/PowerShell, Terraform/Ansible, Git/GitHub, CI/CD, ServiceNow IntegrationHub
- Experience with one or more: Guardicore (Akamai), VMware NSX T, Cisco Secure Workload, Calico/Cilium
- Experience with Hybrid cloud segmentation in Azure/AWS/GCP (NSG/ASG, SG/NACL, tags/labels)
- Experience with Service Mesh (Istio/Envoy), Kubernetes NetworkPolicies, OPA/Gatekeeper
- Telemetry (NetFlow/IPFIX/eBPF, VPC Flow Logs) and SIEM analytics (Splunk/Sentinel/Elastic; KQL/SPL)
- Understanding of NIST 800 207 Zero Trust and mapping to NIST/CIS controls
- Experience designing policy simulation/shadow testing and staged rollouts with measurable KPIs
- Excellent technical documentation skills
- Experience with Service Now, Jira or similar systems
Qualifications
- Experience with scripting
- Experience with one or more: Guardicore (Akamai), VMware NSX T, Cisco Secure Workload, Calico/Cilium
- Experience with Hybrid cloud segmentation in Azure/AWS/GCP (NSG/ASG, SG/NACL, tags/labels)
- Experience with Service Mesh (Istio/Envoy), Kubernetes NetworkPolicies, OPA/Gatekeeper
- Telemetry (NetFlow/IPFIX/eBPF, VPC Flow Logs) and SIEM analytics (Splunk/Sentinel/Elastic; KQL/SPL)
- Understanding of NIST 800 207 Zero Trust and mapping to NIST/CIS controls
- Experience designing policy simulation/shadow testing and staged rollouts with measurable KPIs
- Excellent technical documentation skills
- Experience with Service Now, Jira or similar systems
Skills
- Scripting skills such as Python/PowerShell, Terraform/Ansible, Git/GitHub, CI/CD; ServiceNow IntegrationHub
- Understanding of NIST 800 207 Zero Trust and mapping to NIST/CIS controls
- Experience designing policy simulation/shadow testing and staged rollouts with measurable KPIs
- Excellent technical documentation skills
- Experience with Service Now, Jira or similar systems
Benefits
See Benefits - Wells Fargo Jobs for an overview of the following benefit plans and programs offered to employees.
Pay
$100,000.00 - $196,000.00
Schedule
This role is a hybrid position, requiring 3 days a week in the office.