Job title: Network Security Engineer
Job type: Permanent
Emp type: Full-time
Salary type: Annual
Job published: 16-04-2019
Job ID: 31179

Job Description

Network Security Engineer - One Year Fixed Term - Up to $160K/year (inclusive of superannuation)

Job Role:

The Network Security Engineer role will predominantly be an IT security operations role with a component of Security project work (60%/40%).

In this role, the Network Security Engineer will be responsible for the support of the production environment and to ensure that the appropriate security policies and practices are implemented and enforced.

Job Responsibilities:

  1. Review and ongoing network security management of routers, switches, firewall, intrusion detection/intrusion prevention, VPN, SSL, and other network component policies.
  2. Daily triage, update/resolution of tickets generated and assigned by ticketing system
  3. Respond to high priority incidents and follow through to closure
  4. Flag potential security vulnerabilities before they negatively impact the business
  5. Implement hardening of routers, switches, firewall configurations, change control, logging configuration and monitoring.
  6. Identify and understand configuration gaps in existing security technical controls by running periodic health checks with the view to remediate faulty and/or weak controls.
  7. Respond to security related events and assist in remediation efforts
  8. Coordinate and monitor log analysis to ensure policy and security requirements are met
  9. Extensive experience with network documentation
  10. Manage all interactions with the business and other parts of IT in a professional and courteous business manner with an emphasis on customer satisfaction, while in a timely fashion keeping relevant stakeholders abreast of expectations, problem status and completion
  11. Managed SIEM integration of network devices
  12. Support Network Segmentation and Access Control activities
  13. Other duties as assigned

Mandatory skills:

  1. Minimum of 3-5 years’ experience working in IT security operations and security projects
  2. Experience with network troubleshooting
  3. Experience working in a change driven environment
  4. Experience working with firewalls (preferably, Palo Alto and Cisco firewalls), routing, switching, IPS / IDS, VPN, Multi-factor Authentication, and Web Application Firewalls (WAF), Proxy (Symantec Bluecoat) & SSL Inspector, Network Segmentation & Access Control (forescout) & Cloud DPL (Symantec)
  5. Experience with incident response and event management
  6. Understanding of authentication, authorisation and auditing (AAA), particularly with integration of RADIUS, LDAP, TACAS, and Active Directory
  7. Understanding of Distributed Denial of Service (DDOS) attacks and mitigations 
  8. Understanding of NAC and Network segmentation (Forescout)
  9. Understanding of best practises of ITSMs, particularly ITILv3.
  10. Be available for on-call

Soft skills:

  1. Ability to work independently and part of a team
  2. Ability to work in an agile environment
  3. Strong documentation and communication skills
  4. Experience in collaboration with multiple business units and departments at different levels within an organisation
  5. Vendor liaison experience

Desirable:

  1. Experience with CIS and how to use it to harden platforms
  2. Understanding of, WIFI security