The Network & Security Engineer IPS Specialist is a crucial role within the organization responsible for managing maintaining and optimizing network security infrastructure with a focus on Intrusion Prevention System (IPS). This role plays a vital part in safeguarding the organizations network from potential security threats and ensuring uninterrupted network operations.
Key responsibilities
- Manage and configure TrendMicro Tipping Point Intrusion Prevention System (IPS) and Security Management System (SMS).
- Install configure and finetune IPS devices to ensure maximum performance availability and security of the network architecture.
- Troubleshoot maintain and optimize firewalls security devices routers and switches to ensure a strong security posture.
- Analyze network and security alarms identify risks and provide mitigation plans to resolve security issues.
- Identify and document network security errors vulnerabilities and corresponding solutions.
- Expertise in intrusion detection methodologies and best practices.
- Perform packet captures from IPS nodes generate TSR and analyze logs for TCP/IP network traffic and event analysis.
- Upgrade IPS nodes and SMS clients to maintain system integrity.
- Configure Inspection Bypass rules manage IPS node fallback scenarios and revert them to normal mode as needed.
- Detect and analyze attack signatures and logs and provide detailed remediation plans to protect the environment.
- Participating in incident response and forensic analysis related to network security incidents.
Required qualifications
- Bachelors degree in Computer Science Information Technology or a related field.
- Professional certifications such as CISSP CCNP Security or equivalent are highly preferred.
- Proven experience working as a Network & Security Engineer with a focus on IPS technologies.
- 8 years of experience in network security with a strong focus on IPS and firewall management.
- Extensive experience with TrendMicro Tipping Point IPS and SMS client management.
- Expertise in network traffic analysis event log analysis and intrusion detection methodologies.
- Strong understanding of TCP/IP protocols and handson experience with network devices (firewalls routers switches).
- Proven ability to identify network security risks and implement effective mitigation strategies.
- Excellent problemsolving skills and the ability to make security recommendations based on realtime data.
- Ability to perform security assessments penetration testing and vulnerability scanning.
- Experience in firewall management network segmentation and access control lists (ACLs).
- Proficiency in network monitoring and analysis tools such as Wireshark Snort or Suricata.
- Experience with cloud security and virtualized environments is a plus.
- Strong documentation and reporting capabilities for security incidents and IPS activities.
- Knowledge of secure coding practices and application security is an advantage.
penetration testing,virtualized environments,snort,vulnerability scanning,management,ips,acls instruction,intrusion detection methodologies,security,network security,network traffic analysis,trend micro,suricata,certified information security manager (cism),intrusion detection,application security,routers,tcp/ip protocols,firewall,cloud security,network segmentation,trendmicro tipping point ips,security management system (sms),network monitoring and analysis tools,switches,wireshark,secure coding practices,firewalls,event log analysis,access control lists (acls),networking,information security management system (isms),security assessments,firewall management,intrusion prevention system (ips),tcp/ip