Security Solutions Engineer

For one of our clients we are looking for a Security Solutions Engineer.

Tasks

  The position sits within the Global Infrastructure Defense Engineering team who is responsible to design / develop / test and architect companys global network security solutions across the globe. 

A Security ACL (Access Control List) is a traffic filtering ACL in place of an approved Firewall. The goal of the role is to design and operate a framework for assessing the risk of connectivity required compensating controls and for approving or rejecting the use of Security ACL in place of Firewall.

Also in this role you will be proposing alternative solutions aligned with the companys risk appetite defining metrics for the framework and reporting the risk posture.

Key Responsibilities:

• Defining criteria and standards for the use of Security ACLs aligned with companys risk appetite.
• Define metrics for evaluation and reporting connectivity risk.
• Define and develop test methodologies and verifications for the effectiveness of Security ACLs.
• Desing framework and automation for managing Security ACLs
• Manage approval of Security ACLs
• Own and maintain the product life cycle of the products belonging to the Security ACLs management solution (software/hardware versions patch management vulnerability threat management End of Support) from an engineering point of view
• Engage with other engineering streams Architecture forums and companys businesses to develop solutions to meet current and future operational and security requirements in accordance with companys certification standards and procedures.
• Maintain relationship with key industry partners and vendors in the security field

Requirements

• 2 Experience in the field of Information technologies ideally in IT security or Python development
• Experience in Firewall and IDPS technologies
• Experience in developing with Python
• University / College degree or equivalent industry/technology knowledge
• Deep understanding of TCP/IP technologies
• Firewall IDS/IPS knowledge is required
• Experience with multiple security disciplines and to understand layered defense concepts
• Understanding of Cyber Kill Chain
• Familiar with Encryption and key management
• Vulnerability assessment or security audit experience is a plus
• Vendor independent industrystandard based knowledge with threat and risk focused mindset.