Principal Responsibilities:
Networking responsibilities will include, but are not limited to:
- Plan, design, build, deploy and support scalable networks, systems and security strategies
- Collaborate with Engineers, Administrators and Support Specialist to run, support, secure and monitor on-prem, cloud and remote networks
- Consult on multiple cross-functional networking projects and applications
- Ensuring that information systems and assets are monitored to identify networking events and verify the effectiveness of protective measures
- Ensuring response activities are coordinated with internal and external stakeholders (e.g., external support from service providers)
- Ensuring activities are performed to prevent expansion of a networking event, mitigate its effects, and resolve the incident
- Ensuring response processes and procedures are executed and maintained, to ensure response to detected networking incidents
- Identify, review, evaluate and validate networking standards; technical requirements, gaps and issues, and communicate proposed and custom solutions to existing architecture
- Additional activities as necessary to support the overall Networking and mission
Operational responsibilities will include, but are not limited to:
- Research, implement and consult on capacity planning models, NexGen and redundancy solutions
- Create plans and procedures to troubleshoot, diagnose and resolve escalated support problems
- Contribute to Change and Incident Management, problem escalation and work processes
- Evaluate networks, review and analyze migration strategies, and document codes and scripts
- Provide recommendations to deploy, migrate and support network monitoring tools
- Conduct reviews, evaluate and provide recommendations on vendor services
- Perform research, create documentation and write reports
Security Operations responsibilities will include, but are not limited to:
- Investigate security issues and risks, resolve and report security vulnerabilities to Cyber Security
- Create and document network / security policies and baselines
- Recommend and implement appropriate up-to-date security technologies, network segmentation and access control, and End-Point security solutions
- Assist with planning, developing and reviewing security requirements and procedures
- Identify security audit discrepancies to implement corrective and preventive measures
Requirements for success:
Experience requirement:
- Minimum of 3 years’ experience working as a systems engineer or administrator
- Minimum of 4 years’ experience working as a network engineer or administrator
- Minimum of 5 years’ networking and security operations experience
Education and/or certification requirement:
- Cisco CCNP/CCDP, or Fortinet FCP, or equivalent required
- Certifications equivalent to the Cisco CCIE/CCDE, or Fortinet equivalent, desired
- Successful completion of Cisco or Fortinet, or its equivalent in routing, switching, and firewall management
- Bachelor’s Degree in a related field such as networking, cybersecurity, information technology, or computer science; equivalent combination of education experience may be considered
Technical skills and abilities:
- Ability to participate as a technical lead on all projects requiring networking expertise and consultation
- Ability to design, secure and support multiple inter-connected networks, devices, and profiles
- Ability to deploy, integrate, configure, and maintain systems which comprise the overall networking technology stack
- Ability to communicate complex networking concepts in a clear and concise manner for laypersons unfamiliar with networking and/or IT concepts
- Proficiency to design, implement, and troubleshoot network security policies, VLANs, VoIP, Remote Access VPN, IPSec VPN, 802.1x, RADIUS, TACACS, AAA, TLS, SSL, multifactor authentication, password management and monitoring tools
- Expertise knowledge and skill to configure and troubleshoot routing protocols (IGP, BGP, EIGRP, OSPF, IS-IS), network services (IPv6, IPv4, DHCP, DNS, IPAM, SNMP, PAT, NAT), SD-WAN, multi-casts and MPLS networks
- Skilled in deploying, managing and troubleshooting Cisco routers, Cisco Nexus switches, Cisco IOS Switches, Cisco Wireless, Cisco ISE, IDS/IPS, Fortinet FortiGate Firewalls, Fortinet FortiWeb Web Application Firewalls, and F5s
- Ability to design and implement high availability and redundant networks using, QoS, CoS, NTP, HSRP, GLBP, LACP
- Strong foundational knowledge in IT technologies and concepts not limited to email security technologies, application security, cloud security (IaaS & PaaS, etc.), managed security services provisioning (MSSPs), DNS, Linux, Windows, Mac OS, etc.
- Good knowledge of Microsoft Windows, Linux, UNIX, MacOS, VMware ESXi, Docker, Amazon AWS, Microsoft Azure, and Cloud Networking
- Knowledge of Change / Incident Management (ITIL, ITSM), Agile, SCRUM and Waterfall project management
- Knowledge of PowerShell/Python/JavaScript, MacOS, malware analysis, vulnerability management, WAF, CIS Benchmarks
- Ability to use DevOps, Git, Jira, Confluence, automating and ticketing (FreshService) tools
- Eagerness to develop, grow, and maintain strong inter-team relationships across the business to aid in the accomplishment of the mission
