Senior Security Engineer - Network Defense
SECU · Raleigh-Durham-Chapel Hill Area · 4 mo ago
Information TechnologyFull-time
Responsibilities
- Rapidly understand SECU Cloud and Data Center environments, becoming an expert in the implementation of security features within the infrastructure environments.
- Evaluate security related features within vendor infrastructure offerings and new security tools which improve SECU’s security responsiveness.
- Represent Containment related infrastructure changes accurately within the SECU Change Management process.
- Deliver thoroughly planned and executed changes within the environment without application impact.
- Collaborate with software developers to ensure Containment security capabilities are verified, regardless of environment.
- Champion all efforts collaboratively.
- Continuously identify, review, and recommend potential opportunities for enterprise cost-savings, service quality improvement, and operational efficiency.
- Manage security product life cycle from Network Defense roadmap to Annual Vendor Reviews.
- Aid with driving milestone planning, deployment coordination, change management, documentation, and user training of new and existing technologies.
- Create documentation to ensure appropriate operational process and procedures are followed in the event of business impacting incidents or issues.
- Identify and fully automate processes, when possible.
- Serve as a Security Engineering subject matter expert that can lead projects and initiatives.
- Serve as a tier III resource for security related issues or outages.
Requirements
- 2+ years of hands-on experience with Zscaler deployments in a support role.
- In-depth knowledge of Zscaler Internet Access (ZIA), Zscaler Private Access (ZPA), and Zscaler Client Connector.
- Familiarity with Zscaler's cloud architecture and security services.
- Thorough understanding of TCP/IP.
- Excellent analytical, problem-solving, and written/oral communication skills.
- Leadership, teamwork, collaboration, self-driven and effective communication skills - both written and verbal.
- 3-5+ years of IT Security Engineering experience working in an enterprise infrastructure or security architecture environment.
- Preferred experience within the network security environment.
- 3-5+ years of experience in one or more of the following security technologies:
- Network IDS/IPS
- VPN/ Remote Access
- NGFW
- WAF
- DDoS Protection
- Web Proxy/ Content Filtering
- Cloud Security Controls
Technical Skills
- App Connectors and Branch Connectors management.
- Experience with scripting languages such as Powershell, Python, VBScript, and Bash.
- Experience working with tools such as Wireshark, Snort, Bro/Zeek, Burp, Nessus, Kali, Security Onion, and Metasploit.
- Experience working with both external and internal auditors to ensure compliance and accurate reporting.
- Experience with modern enterprise and security architectures, their challenges, common approaches to overcome their challenges, and their inherent security strengths and weaknesses.
- Knowledge of industry security standards and frameworks including: NIST, ISO 27001, ISF Standard of Good Practice (SoGP), etc.
- One or more Industry Certifications: VCP, CCIE/CCNP, CISSP, PCNSE, etc.
Job Environment
- Working on-site is required with limited remote work.
- Office setting with physical proximity to other employees is also intermittently required.
- Some background noise from other employees and their activities can be expected.
- Must be able to comprehend and carry out verbal and written instructions.
- Must be able to lift 5 pounds.