Network Security Engineer

• Job Opportunity with TEKsystems
• Network Security Engineer
• Palo Implementation, Cisco ISE Implementation, BGP, OSPF
  

What you will do:

• Implement/Maintain/Design/Assess robust Enterprise network security environment.
• Troubleshoot network equipment, and perform fault and problem management to ensure services are maintained according to the service levels defined
• Exceptional documentation skills that can clearly articulate technical designs, issues and constraints, procedures, and network assessments
  

Mandatory Skills

• 7-10 years of implementing/maintaining/designing experience in a complex enterprise environment working on Palo Alto, Cisco ISE, ASA, WAF, NAC (network Access Controls), VPN (Virtual Private Network).
• Palo Alto – Extensive experience in global protect, Prisma, VPN, code upgrade, Bug scrub, panorama, Troubleshooting, packet capture, etc.
• Planning/ implementing posture, profiling, and enforcing compliance across wired/wireless networks.
• Should have experience in designing and implementing guest networks and BYOD (Bring Your Own Device) for NAC solutions.
• TACACS & RADIUS deployment using ISE.
• Dual factor authentication and implementation.
• Deployment and management of guest portal on ISE.
• Certificate-based dot1x deployment and configurations.
• Manage/monitor/upgrade the ISE hardware.
• SDWAN - Security template creation, validation, and management. NAT (Network Address Translation), Threat detection, filtering, and URL filtering.
• Testing, Validating & deploying signatures at regular intervals on the production environment's.
• Deploy new hardware and regular replacement of firewalls (Tech refresh) in a mission-critical environment.
• Good understanding of packet buffers, hardware Queue, packet descriptors, QoS (Quality of Service), DDOS (Distributed Denial Of Service) protection policies,
• Excellent Knowledge of Routing (BGP/OSPF), MPLS (Multiprotocol Label Switching), VRF, and network routing
• Hands-on expertise in packet capture and packet analysis at protocol levels.
• Should be able to independently suggest, schedule, and conduct hardware and software enhancements, upgrades, reconfigurations, and patches.
• Hands-on expertise in setting up VPN tunnels and troubleshooting connectivity issues.
• Expertise in web auth and dynamic policy management.
• Good understanding of creating templates and security system hardening process.
• Managing and operating cloud-based and Web Application firewalls, F5 WAF (Web Application Firewall), and firewall analyzers.
• Exposure to Enterprise Logging and Monitoring solutions – Splunk
• support on-call and Lead High Priority Incident technical bridges to resolve issues/document root causes.
• Work with different Vendors for faster and more accurate resolution/implementation.
• Playing an accountable role along with the team while handling the operations issues and delivering the assigned projects.
• Good verbal, written, and presentation skills.
• (PCNSE) certification along with CCNP