Network Security Administrator II - Firewall Specialist

Working within the Digital Hands’ Security Operations Center (SOC), the Network Security Administrator II, Firewall Specialist, is responsible for a broad range of firewall management tasks, including daily administration, advanced support for systems and applications, handling of Move/Add/Change/Delete requests, perform installations and upgrades, and primary liaisons for vendor support on behalf of the customer.

This position is a technical role, requiring a high level of hands-on experience, including a thorough understanding of all aspects of computer, network, and application security, in a very fast-paced services organization. The right candidate must possess proven experience implementing and maintaining a variety of firewall technologies, specifically Palo Alto products and Forigate, Check Point and Cisco firewall product experience is a plus.

DUTIES AND RESPONSIBILITIES:

• Monitor, deploy changes, support,andhandle day-to-day firewall rule deployments, and firewall hardware/software refresh activities.

• Analyze,recommend,anddeployfirewall solutions based on analysis of issues and implications for the businessand continuous improvements.

• Identifyemerging issues and trends to inform decision-making.

• Conduct independent analysis and assessment to resolve strategic issues around firewall policies and hardware/software refresh.

• Participate in customer implementation/onboarding of related security controls monitoring and/or management.

• Monitor and track performance, and addresses any issues related to firewalls and rule policies.

• Provide end to end technology support including computer, applications, network and storage, and root-cause analysis etc.

• Participate in new technology releases as applicable to firewall.

• Attend internal and customer meetings as required to provide technical expertiseand serves as a subject matter expert on network firewall-related matters.

• Analyze network security requirements and implement perimeter security changes.

• Collaboratewithcustomers’ITandsecuritydepartments.

• Collaboratewithvendorsupportforsecuritysolutions.

• Collaboratewithinternaldepartments.

• Maintainhealthandperformanceofsecuritysolutions.

• Applylatestsecurity patches and ensureproper defenses are implemented.

• Optimize customer network and security postures.

• Performsecurityassessmentsandvulnerabilityscans.

• Createalertswithinsolutionstotriggeroperationaleventsoractions.

• Createalertswithinmonitoringsolutionstotriggerhealthandperformancealerts.

• Createmonthlysecurityreportsforcustomers.

• Createandmaintaindashboardsformonitoringsolutions.

• Participateinbusinesscontinuityplanningandtesting.

• Participate in the development and maintenance of Standard Operating Procedures (SOPs) associated with managed systems and applications.

• Participate in on-call rotation.

• Performotherdutiesasassigned.

EDUCATION AND WORK EXPERIENCE:

• Bachelor'sdegreeincomputerscienceorrelatedfield;orequivalentexperience.

• 2+yearsofexperienceinSecurityAdministration,preferablyworkingwithinanMSSP.

• 5+ years hands-on experience with Web Application Firewalls; F5 and Zscaler.

• 5+yearsofhands-on firewall experience,preferablywith multiple firewall products such asPalo Alto, Fortinet,CheckPoint, Cisco,andJuniper.

• Musthaveprovenexperienceimplementing,maintainingandwritingpolicieswithinfirewalltechnologies.

• Extensive experience with policy management and rule deployment.

• Knowledge of firewall rule policy optimizations and remediations.

• OperatingsystemsknowledgeandsystemsadministrationskillsforvariousversionsofUNIX,LINUX,andWindowsandWindowsServer.

• ProfessionalcertificationssuchasCCSA,CCSE,CCNA,CCNP Security, PCNSA,PCNSE,NSE 4, NSE 5,Network+,Security+,are highly desired.

• Strongknowledgeofpolicies,procedures,audits,andriskmanagement.

• Deep understanding of network and security protocols (SSL, DNS, IPSEC, NAT,etc).

• Experienceininformationsecurity,ideallyinmulti-platformenvironmentspreferred.

• Experiencewithanalyzingsecurityattacksandexploits.

• Experience with SDN and SASE.

• Experience with SDWAN Technologies.

• Basicunderstandingofprogrammingconceptsandcode.

• AccessControlConcepts,Methodologies,andTechniques.

• Experienceintheevaluationofnewtechnologyandsecuritythreatsastheyarise.

• Familiaritywithinformationsecuritybestpractices.

• Demonstrateddocumentationskillsincludingcreationofprojectmetricreportsandthecreationofcommunicationplansandchangecontroldocuments.

KNOWLEDGE, SKILLS AND CHARACTERISTICS REQUIRED:

• HighlevelofinterestinsecurityandtheneedfortheConfidentiality,IntegrityandAvailabilityofinformationandinformationsystemstobemaintained.

• Highlevelofintegrity,judgment,andsituationalawareness.

• Promoter of cross-teamcollaboration and growth.

• Excellent verbalandwritten communication skills.

• Excellentanalyticalreasoning, creative problem solving, problem sensitivity.

• Excellentpresentationandlisteningskills.

• Excellentorganizationalandtime-managementskillsandtheabilitytoprioritize.

• Flexibilityandadaptabilitytochange.

• Excellentcustomerserviceskills.