Title: Network Security Engineer
Location: New York, NY (Financial District)
Terms: Full-time, 3 days on-site/2 days remote
Salary: $140k - $160k + bonus
Industry: Banking/Financial Services
Job Summary:
Responsible for design, implementation and administrating Security infrastructure products. Ability to support large enterprise mission critical security products and develop new technology solutions. Provide hands on technical expertise in working with clients and other GS-IT groups on security issues.
Responsibilities:
- Design, implement, and maintain FortiGate firewalls in a Cisco network environment.
- Configure and manage FortiGate security features, such as firewall policies, IPS/IDS, VPN, and advanced routing.
- Troubleshoot firewall/network security issues and provide technical support to users.
- Stay up to date on the latest security threats and vulnerabilities.
- Work with other IT teams to ensure the overall security of the network.
- Document network security policies and procedures.
- Manage FortiGate licenses and renewals.
- Administer all network infrastructures -LAN, MAN, WAN, VPN and DMZ’s including production.
- Understand and administer proxies and its components.
- support, fault and performance monitoring, improvements, and capacity planning
- Make recommendations to management regarding best practices and meet business requirements.
- Comply with network and firewall Corporate Change Control policies and procedures.
- Must be able to troubleshoot hands on network, proxy, load balancers, firewall, and internet connectivity issues.
- Understanding of Cisco product line -switches, routers, etc.
- Administering of logging and security platforms: Horizon, Tenable, Vectra etc.
- Administering of network monitoring tools - Command, Stablenet, etc.
- Keep thorough and current network infrastructure documentation –Visio, etc.
- Off hours and weekend support required.
- 70% firewall security – 30% network administration
Key Requirements:
- Excellent analytical and problem-solving skills.
- Strong communication and interpersonal skills.
- Ability to work independently and as part of a team.
- Up-to-date on the latest security threats and vulnerabilities.
- Good working knowledge of UNIX (Solaris and Linux
- Understanding of VPN concepts, protocols and implementations
- Network experience with the Financial Industry’s unique requirements –Market Data, exchanges
- Required Fortinet CSS certification (OT Security or Security Operations)
- Preferrable, NSE certification
- Over 5 years of experience in a similar position
- Experience with project management.
- Preferred to have Cisco CCNA, CCNP certification or equivalent experience
- Must have experience with FortiGate Firewalls