Job Description
Scope of Work: The Network Security Engineer will be responsible for evaluating and identifying vulnerabilities in workstations, servers, and network devices, including missing patches, configuration errors, and other flaws. They assist in vulnerability management by prioritizing fixes based on risk and ensuring timely system patching or alternative mitigation strategies. The role involves conducting network security assessments, identifying risks and compliance issues, and recommending improvements. Additionally, the engineer will help design, implement, and maintain network security solutions, provides support for security devices, performs web application vulnerability assessments, and ensures regular risk assessments, policy reviews, and network-wide audits. They stay current with security trends and developments.
Position Responsibilities: - Perform vulnerability detection and system risk evaluations in workstations, servers, and network devices including missing patches, configuration errors, and unidentified flaws.
- This will be a Hybrid role
- Assist with vulnerability management of systems including prioritizing vulnerability fixes by risk, perform system patching, and mitigation of vulnerabilities in lieu of patching.
- Perform network security assessments and audits, identify network security risks and vulnerabilities, compliance control deficiencies, and recommend network security solutions and improvements.
- Assist with design, implementation, and maintenance of network security solutions and architectures.
- Provide security support and guidance for the configuration, installation, and upgrading of network security devices and software, such as routers, switches, VPNs, firewalls, and proxies.
- Perform web application vulnerability assessments.
- Map data flow across the network.
- Assists with creating, reviewing, and documenting network security policies and procedures.
- Keep abreast of network security trends and developments
- Monthly risk assessment including missing patches and vulnerabilities not yet mitigated.
- Monthly updates on active risk mitigation.
- Annual review of policies and procedures.
- Annual network-wide audit.
Qualifications: - Four (4) years of IT experience in data security analysis and risk management within the most recent five (5) year period.
- Fluent with Microsoft Windows, Linux, Tenable and Nessus, SolarWinds, and Cisco network equipment.
- Familiar with Oracle and SQL databases, Cisco Firepower, Infoblox, CIS Critical Security Controls, NIST SPs and FIPS, MECM, and zero trust architecture.
- Have in-depth knowledge of network protocols, standards, and best practices, as well as C# and vb.net programming and scripting skills.
- Professional experience with the technologies and methodologies detailed below:
- Access control
- Anti-malware software
- Anomaly detection
- Application security
- Cloud security
- Data loss prevent (DLP)
- Email security
- Endpoint security
- Firewall management
- Intrusion prevention systems
- Network segmentation
- Security information and event management (SIEM)
- Virtual private network (VPN)
- Vulnerability management
- Web security
- Wireless security
Education/ Certification: A Bachelor's Degree from an accredited college or university with a major in Computer Science, Information Systems, Engineering, Business, or other related scientific or technical discipline or four (4) years of equivalent experience in a related field.
One or more of the certifications below are a plus:
- CompTIA Security+ Certification
- Certified Information Systems Security Professional (CISSP)
- GSEC (GIAC Security Essentials Certification)
- CCNA or CCNP
Your safety during your job search is important. Recruiting communications will always be sent through one of the following corporate domain emails (@Priwils.com).
We will never send communications through any other domain, including @Priwilscareers.com, @gmail.com or@yahoo.com ). We will never request payment from you, nor will we send payment to you, prior to your start date. If you have been asked to send or receive any payment, or if you have any doubt about whether you have been contacted by a Priwils employee, please contact us at jobs@Priwils.com
Job Tags
Full time, Remote job,