Employer Active
Job Alert
You will be updated with latest job alerts via emailJob Alert
You will be updated with latest job alerts via emailRole: Network Security and Zscaler SME
Location : Deerfield IL (Hybrid model of working)
Type: W2/Fulltime
Specific skill set: Firewall (Palo Alto) Zscalar and Cloud Networking (AWS)
Job Summary:
We are looking for Network Security and Zscaler SME. Network Security Engineer with significant experience with the Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) products.
Years of experience needed: 6 10 years
Technical Skills:
Support team by building configuring troubleshooting and updating the network security capabilities that protect core networks and information.
Plan and perform maintenance and upgrade of Firewalls Cisco ASA Palo Alto Juniper Firewall.
Monitor network connectivity and ensure high quality data transmission using standard network tools.
Serve as a liaison with 3rd party vendors and providers and be able to coordinate troubleshooting and provide real time updates via standard collaboration tools.
Provide direct end user support to a diverse user base ranging from average desktop users to other IT and Information Security Professionals.
Establish and maintain standard operating procedures for operations team members.
Participate in an oncall rotation to provide emergency support for the corporate network security environment.
Provide feedback to team leadership to improve existing solutions so they better meet the business needs.
Provide technical leadership to mid and junior engineers.
Help customers from around the enterprise troubleshoot and resolve their network security related issues.
Provide technical support for system upgrades technical refreshes or new builds per requirements set by the leadership team as well as functional leads.
Be a technical resource for individual projects when his or her knowledge and experience meet the requirements of the project group or task.
Provide critical incident response & problem management including root cause of system problems such as configuration issues resulting in operational performance degradation or system outages supporting the government with information and advice on the necessary correction actions and/or interim workarounds relative to network security.
Provide documentation support for designs implementations configurations knowledge base articles relative to network security.
Support the project lifecycle for network security projects as well as projects with dependencies on network security
Develop and maintain technical documentation and diagrams related to the field communications systems equipment & networks
Ensure documentation relative operational procedures services etc. are written and centrally accessible and updated as necessary
Provide ZIA/ZPA operational support in the management maintenance upgrading risk analysis and response/troubleshooting/issue management activities to ensure security policies and requirements are being factored into the solutions within the infrastructure.
Provide network consultation during operational support activities focused on providing network access to Internet based sites (URL categories) within ZIA.
Provide network operational support focused on Internet access security policies management (Cloud App) within ZIA.
Understand the Traffic Flows for both Https (web Traffic) standard and custom applicationbased traffic and accordingly design solution around it for Firewalling and Proxy services.
Monitor ZPA operational support for customer application configuration and access issues for customer application teams.
Provide ZPA app connector operational support.
Create manage and maintain all SOPs CONOPS Installation/Configuration Guides.
Provide consultation assisting with the development of ZPA access and firewall policies for new applications.
Assist other senior consultants with analysis evaluation and preparation of recommendations for system improvements optimization development and/or maintenance efforts.
The Individual must possess the ability to analyze and understand a variety of existing and emerging business requirements interface with technology engagement teams as a fully seasoned and proficient perimeter solutions engineer in providing best in class firewall/IDS/WAF solutions that align to meet business and technology requirements.
Candidate will be a strong engineering minded individual with polished collaboration written and communication skills and a proven track record interacting with various levels of management clients and technical team members in delivering technical perimeter solutions.
Management Skills:
Knowledge of network security architecture concepts including topology protocols components and principles (e.g. application of defenseindepth)
Knowledge of service management concepts for networks and related standards (e.g. Information Technology Infrastructure Library current version ITIL).
Knowledge of the enterprise information technology (IT) architectural concepts and patterns (e.g. baseline validated design and target architectures.)
Knowledge of security system design tools methods and techniques.
Knowledge of network systems management principles models methods (e.g. endtoend systems performance monitoring) and tools.
Skill in applying and incorporating information technologies into proposed solutions
Knowledge of cybersecurity and privacy principles
Experience providing O&M and engineering support to complex missioncritical systems
Experience working closely with customers and users to troubleshoot and resolve complex network related issues
Ability to work and brief customers to include senior management
Knowledge of management of classified systems and the required security guidelines associated with secure facilities
Must be able to work collaboratively with other system administrators system engineers and network engineers in a team environment
Significant experience in the implementation operational support and troubleshooting of ZIA/ZPA products.
Excellent troubleshooting and customer service
Knowledge of firewalls and firewall configuration
Knowledge of network communications
Knowledge of application usage of ports/protocols
Understanding of data center firewall topology and communication paths
Understanding data center security policies Understanding application communications
Understanding of advanced threat detection in an enterprise environment
Understanding of malware families their types and the threat they pose
Experience designing developing integrating implementing operating and analysis of cybersecurity technologies
Skill in independently making configuration updates to ensure system availability requirements.
Qualification:
6 years of experience in an enterprise network or security environment.
Must have network and firewall engineering experience designing implementation and maintaining network infrastructure and Layer 2 and 3 networking devices and/or firewall devices such as Juniper Cisco or Palo Alto
Strong knowledge of OSI 7layer model TCP/IP and common application layer protocols
Experience with Implementation and maintenance of Next Generation Firewall Features (Application aware filtering DNS IPS Web filtering SSL Inspection)
Experience with Palo Alto Products
Knowledge of NIST SP 800 53 series or ISO 27000 series documents
Experience with managing SSL and IPSEC VPN clients and site to site VPNs
Should have at least 7 years of experience implementing and managing advanced network security environments for a medium to large size organization.
Certifications Needed:
Network/Cyber Security Training or Certification (ie Security Network Splunk FireEye CCNA CCIE etc.)
Bachelors degree and 6 years of prior relevant experience; additional work experience or Cyber courses/certifications.
Full Time