Brief Description
The Network Engineer III is a member of the Infrastructure Security Services Team supporting Huntington s Enterprise Network Organization. This team is responsible for all research project design and initial implementation of security technologies as well as ongoing configuration and environment standards. This team also provides subject matter expertise support during incidents. This role specifically will focus on network security technologies related to network access control (NAC) and firewall infrastructure deployed in alignment to zerotrust principles and industry standard like PCI SOX and CIS.
Detailed Description:
- This role will primarily be focused on firewall security policy design and implementation utilizing Palo Alto Firewalls and Panorama.
- Expertise in Network Access Control (NAC) and Segmentation solutions such as Cisco ISE Elisity Forescout or Fortinet.
- Background and knowledge of IPSec/SSL remote access technologies including management of policy client authentication and infrastructure support required.
- Build and enhance network security solutions with a secure and automate first mindset .
- Leverage Infrastructure as Code (IaC) concepts to manage configuration baselines via Jinja2/YAML and GIT.
- Participate in an oncall rotation.
Basic Qualifications:
- 3 years of handson large scale Enterprise network deployment and configuration.
- 3 years of handson Palo Alto Panorama (configuration and maintenance)
- 3 years of handon experience in Network Access Control (802.1x and TrustSec/SGT).
Preferred Skillset:
- Current Palo Alto PCNSE Certification
- Expertise in Network Access Control policy and solutions preferably with Cisco Identity Services Engineer (ISE).
- Experience with Cisco ASA or Firepower firewalls support Cisco remote access solutions.
- Evaluate design implement operate and maintain Palo Alto Panorama and Firewalls.
- Knowledge and experience using or deploying Secure Access Service Edge (SASE) technology such as iBoss zScaler or Palo Alto.
secure access service edge (sase),firepower firewalls,palo alto panorama,cisco,git,infrastructure as code (iac),jinja2,network access control,firewall,network access control (nac),cisco ise,cisco asa,ipsec/ssl technologies,yaml,alto,palo alto firewalls