Job Description As a TS Security Engineer specializing in Network equipment, your primary responsibility will be to ensure the security of the organization's Network Equipment In this role, you will be responsible for designing and implementing security testing frameworks and carrying out thorough security assessments to identify vulnerabilities and weaknesses in the Network Equipment architecture. Your expertise in network security protocols, firewalls, intrusion detection systems, and other security tools will be instrumental in ensuring the integrity, confidentiality, and availability of the Network devices. Additionally, you will be required to work collaboratively with cross-functional teams to develop and implement security policies and procedures that align with industry best practices and regulatory requirements. Responsibilities Create a test plan for the network equipment as per ITSAR standards . Conduct security assessments and penetration tests on various IP Router and Wi-Fi CPE devices. Identify and analyze vulnerabilities, misconfigurations, and weaknesses in ITSAR IP Router and Wi-Fi CPE. Develop and execute test plans, methodologies, and tools to assess the security of IP Router and Wi-Fi CPE. Collaborate with network architects, engineers, and developers to design and implement secure IP Routers and Wi-Fi CPE and configurations. Provide recommendations and remediation strategies to address identified security issues and improve the overall security posture of Network Equipment. Stay up to date with emerging threats, vulnerabilities, and security best practices related to IP Router and Wi-Fi CPE and technologies. Participate in incident response activities and security incident investigations related to network equipment security breaches or incidents. Document and communicate security findings, assessment results, and recommendations to stakeholders and management. Contribute to the development and enhancement of security policies, standards, and procedures specific to 5G network security. Qualifications Test plan and testing experience in a broad range of network security protocols both IPV4/IPV6. knowledge of Network Defense, Proxy, Firewalls, and Authentication Servers (LDAP, RADIUS, Local Auth, etc.,) Hands-on Security protocols - Captive Portal, Port Security, VPNs, IPSEC, DOT1x, Web Auth, and EAP Methods. Penetration tests and vulnerability assessments on computer systems, networks, and applications to identify potential security risks and vulnerabilities. Knowledge of cryptographic encryption algorithms, key exchange algorithms, hashing/message authentication algorithms, PKI, random number generators, TCP/IP, SSH, HTTPS, SSL/TLS, IKE, etc. Tools experience is desirable, exposure to any or all these tools IXIA, Wireshark, Burp Suit, Hydra, Fuzzers, Nmap, Nessus, etc. Experience building testing environments, performing testing, and reporting results (technical writing). Excellent written/oral communication skills and strong analytical and problem-solving skills. Additional Qualifications would be a plus: Knowledge of OpenSSL, OpenSSH and/or OpenPGP. Vulnerability Analysis and/or penetration testing experience/expertise. Knowledge of various programming languages (C, C++, Python & Scapy) and development environments. Security Certification is a CCNA/CCNP and CEH along with VPAT knowledge Knowledge of OWASP TOP 10 and CWE Top 25 is additional good to have along with X.509/Digital certificates and their attributes as well as protocols such as CRL and OCSP. Self-motivated individual with the ability to collaborate and work in a high-performing team with an eagerness to learn.
