Job Description

Job Details Primary Responsibilities The responsibilities of the Network Security Engineer include, but are not limited to:

• Onboard and protect web applications to the Web Application Firewall (Imperva)
• Monitor and analyze network traffic, IPS logs, WAF logs and security event data for proper classification and consumption by security stack
• Investigate intrusion attempts and perform analysis of exploits
• Review security alerts
• Keep network security solutions on supportable baselines (Cisco ISE, Firepower, Zscaler)
• Analyze a variety of network and host-based security appliance logs to determine the correct remediation actions and escalation paths for each incident.
• Provide information regarding intrusion events, security incidents, and other threat indicators to IR and other teams
• Assist with the development of processes and procedures to improve incident response times, analysis of incidents, and overall SOC functions
• Participate in knowledge sharing with analyst team on investigative and response methodologies
• Consult with IR for capability and countermeasure enhancements
• Maintain tool lifecycles and roadmaps

Candidate Profile The successful candidate will be a passionate information security professional with the ability to communicate to different business and IT leaders. The candidate will demonstrate drive, intelligence, maturity, and energy and will be a proven problem solver.

• Bachelor’s degree in computer engineering, computer security or computer science discipline
• 4 years of network engineering and information security related experience including configuring routers, switches, firewalls, IPS, IPSec Tunnels
• Experience in log analysis, intrusion detection, or firewall administration, network operations,
• Deep understanding of network routing protocols and switching architectures
• Understanding of security operations concepts such as perimeter defense, BYOD management, data loss protection, insider threat, kill chain analysis, risk assessment and security metrics
• Strong understanding of Threat Intelligence and Threat Profiling
• Familiarity with network security methodologies, tactics, techniques, and procedures
• Knowledge of network security architecture, understanding of the TCP/IP protocol, and remote access security techniques/products
• Analyze network packet captures to solve/understand network issues/cyber incidents
• Experience performing security/vulnerability reviews of network environments
• Experience generating and modifying network and host-based Indicators of Compromise (IOC)
• Candidate must be able to react quickly, decisively, and deliberately in high stress situations
• Strong verbal/written communication and interpersonal skills are required to document and communicate findings, escalate critical incidents, to technical and non-technical audiences at different seniority levels and interact with customers
• Highly motivated individual with the ability to self-start, prioritize, multi-task and work in a global team setting
• Ability to maintain a high level of discretion and personal integrity in the exercise of duties, including the ability to professionally address confidential matters