Network Security Engineer Salary in USA

DescriptionNetwork Security Engineer / Senior Network Security EngineerU.S. citizenship is required for this position due to Department of Defense restrictions.Role Summary:This position can be filled at the Professional level or the Senior Level Network Security Engineer.Provide technical expertise in build and maintenance of organization’s network; analyze and resolve issues to maximize system availability. Work in a team of network engineers to design, implement, and administer network infrastructure including firewalls, routers, switches, load balancers, IPAM Servers, and other devices to keep network traffic moving to correct location and keep it out of wrong locations.In this role you will:Security (40%)Maintain and enhance organizational security posture by following security requirements as specified by organization with an eye toward both compliance and true security.Ensure requirements are being met for NIST800-53, HIPAA, PCI, etc.Manage firewall as approved by WPS Security on Palo Alto, Cisco, and Juniper firewalls, or other manufacturers as needed.Manage IDS/IPS as approved by WPS Security on Tipping Point, Cisco Firepower, and Palo Alto Threat.Network Management (40%)Provide technical expertise in analysis and resolution of issues to maximize system availability and meet both internal and contractual Service Levels.Provide technical expertise in evaluation, planning, analysis, development, and implementation of network security platforms, and network infrastructure, including providing roadmaps, processes, and procedures for both project work and general organizational growth in conjunction with Senior Engineers and Management.Maintain knowledge of technologies, including new technology developments.Interface with appropriate technology vendors during installation and in resolution of any problems.Leadership (20%)Provide technical assistance to clients in a professional and accommodating manner.Take a leadership role on moderately complex projects independently or as part of a larger project team.Handle multiple competing initiatives and escalate issues effectively.This role could be a good fit if you: Possess excellent consultative and communication skills, analytical ability, decisiveness, and good judgment.Possess in-depth knowledge of network infrastructure technologies used in area and work at highest level of all phases of network administration.You’ll benefit from this experience by:Working in a highly complex highly security conscious environment that has a security umbrella that encompasses Health Insurance, contracts with Center for Medicare and Medicaid Service (CMS) and Department of Defense (DOD) contracts that include, Tricare and VAAssisting in the modernization and transition of legacy systems to cloud-based platforms.Working in an environment that serves our Nation’s military, veterans, Guard and Reserves along with their families.You need to have: U.S. citizenship is required for this position due to Department of Defense restrictions. Bachelor's Degree in related field or equivalent post high school and/or related work experienceSenior Level: 1 or more years of related work experienceWe also prefer: Senior level: - 7 or more years with Cisco FirewallsProfessional level: - 4 or more years with Cisco FirewallsExperience with Juniper firewallsExperience with Palo Alto FirewallsKnowledge of Route/Switch technologiesThis role is open to considering 100% remote work, we are highly interested in applicants that are regionally local to the Madison area, to be able to come into the office on occasion after Covid-19.Approved States: Arizona, Colorado, Florida, Georgia, Illinois, Indiana, Iowa, Michigan, Minnesota, Missouri, Nebraska, New Jersey, North Dakota, South Carolina, Texas, Virginia, WisconsinYour team:Our team is a group of customer focused Network Security Engineers. We currently have 3 on the team.  It’s made up of a Supervisor/Lead network security engineer, senior network security engineer, and network engineer. We are in process shifting our focus from operational to more security based. We work on several firewall and IDPS platforms across all WPS contracts.Compensation and BenefitsEligible for annual Performance Bonus Program401(k) with dollar-per-dollar match up to 6% of salaryCompetitive paid time offHealth and dental insurance start DAY 1Vision insuranceFlexible spending, dependent care, and health savings accountsShort- and long-term disability, group life insuranceDress for your dayInnovative professional and cognitive development programsWho We AreWPS Health Solutions is an innovator in health insurance and a worldwide leader in claims administration, serving millions of beneficiaries in the United States and abroad.Founded in 1946, WPS offers health insurance plans for individuals, families, and seniors, and group plans for small and large businesses. We are a world-class claims processor and program administrator for the government’s Medicare program. And we manage benefits for millions of active-duty and retired military personnel and their families.WPS has been named one of the World's Most Ethical Companies® by the Ethisphere® Institute for 10 years in a row.Learn more about WPS. Our Purpose and ValuesOur purpose is to make healthcare easier for those we serve. Click HereOur values – Customer Focused, Individual Responsibility, Mutual Respect, and Driven & Passionate – are the core of who we are and how we conduct business every day.Health InsuranceWPS Health Insurance offers high-quality health insurance plans for individuals and families, Medicare supplement plans for seniors, and group health plans for businesses of every size.http://wpshealthsolutions.com/business-units/wpshi.shtmlMilitary and Veterans HealthWPS Military and Veterans Health administers claims and provides customer service and related activities for the U.S. Department of Defense and the U.S. Department of Veterans Affairs and their beneficiaries.http://wpshealthsolutions.com/business-units/wpsmvh.shtmlGovernment Health Administrators WPS Government Health Administrators manages Medicare Part A and Part B benefits for more than 7 million beneficiaries. As one of the largest contractors for the Centers for Medicare & Medicare Services, we’ve served Medicare beneficiaries and their health care providers since 1966.http://wpshealthsolutions.com/business-units/wpsgha.shtmlEPIC Specialty BenefitsEPIC Specialty Benefits provides businesses group insurance products that cover:LifeDisabilityDentalVisionVoluntary benefitshttp://wpshealthsolutions.com/business-units/epicsb.shtml Stay connected: Sign-up for Job AlertsFOLLOW US!FacebookTwitterLinkedInEqual Opportunity Employer/Protected Veterans/Individuals with DisabilitiesThe contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)

Location: Boston, MASalary: $65.00 USD Hourly - $68.00 USD HourlyDescription: Our client is currently seeking a Network Security Engineer - III [Additional Description] Title: Network Security Consultant Location: Boston, MA (Remote) Duration: Long Term ContractDescription:The Network Security Consultant will provide delivery leadership within the Professional Services consultancy team primarily aligned to clients in the USA region. This client-facing role includes the following responsibilities. Delivery • Act as a technical lead in delivery of projects acting as a network security SME, ensuring that solutions remain in scope and are aligned to agreed business requirements, appropriate delivery methodologies are followed and that effective governance is applied; • Delivery of smaller stand-alone projects as required; • Provide support and guidance to consultants working on other Network Security projects; • Provide peer reviews of HLD, LLD and other project documentation as required; • Work with internal and external stakeholders to understand business requirements and prepare appropriate technical solution designs at both high and low levels. Personal/General • Maintain day to day records of project work to allow accurate billing and reporting of consultancy time; • Maintain effective network of business contacts within ** and their partner community; • Maintain and grow their own knowledge to ensure this maintains fully relevant to the network security services practice and its clients; • Have strong presentation and written/verbal communications skills at multiple levels of an organization; • Have a minimum of 5+ years of network security consulting, design and delivery experience. As a Network Security Consultant you will bring - Technical expertise with very strong skills in most of the technologies below: • Firewalls: Checkpoint, Juniper, Palo Alto, Cisco ASA/FTD, Fortinet; • Proxy Services: Bluecoat (forward/reverse proxy), Zscaler; • Load Balancers: F5 (LTM/GTM); • IDP/IPS: FirePower/Sourcefire IPS/IDS, McAfee • Identity & Access Management: Cisco ISE, Aruba Clearpass policy manager; • Routing & Switching: (CCNP/CCNA level), and good knowledge of SD-WAN deployments; • Good understanding of key technologies such as: VRF, dynamic routing (EIGRP/BGP/OSPF), MPLS, DMVPN, GRE, IPSec VPN • Remote Access VPN: GlobalProtect, Pulse Secure, Cisco AnyConnect; • Knowledge of Cloud deployments (Azure/AWS/GCP); • Experience with building, maintaining, reviewing all configurations/settings/policies on chosen technologies; • Experience of multi-vendor, managed outsourcing environments; • Experience working with operational environments following ITIL frameworks; • Excellent documentation and presentation skills; • Excellent troubleshooting skills (technical and non-technical); • Ability to review processes and procedures - and improve them; • Experience participating in network & system security projects to provide: • Business requirements analysis and support for Solutions Architects; • Production of detailed infrastructure designs including physical and virtual aspects of security components; • Migration of complex legacy infrastructures to new managed security services platforms; • Understanding and demonstrable experience working in an Agile environment and actively participating in a Scrum team; • Experience using Jira to help define user stories, tasks and associated estimates. It is likely that you will have gained some of the following professional qualifications: • CCNA/CCNP (Enterprise/Security/Data Center); CISSP or equivalent; • Palo Alto (PCNSA/PCNSE); • Checkpoint (CCSA/CCSE); • Fortinet (NSE) Contact: [email protected] job and many more are available through The Judge Group. Find us on the web at www.judge.com

Your work days are brighter here.At Workday, it all began with a conversation over breakfast. When our founders met at a sunny California diner, they came up with an idea to revolutionize the enterprise software market. And when we began to rise, one thing that really set us apart was our culture. A culture which was driven by our value of putting our people first. And ever since, the happiness, development, and contribution of every Workmate is central to who we are. Our Workmates believe a healthy employee-centric, collaborative culture is the essential mix of ingredients for success in business. That's why we look after our people, communities and the planet while still being profitable. Feel encouraged to shine, however that manifests: you don't need to hide who you are. You can feel the energy and the passion, it's what makes us unique. Inspired to make a brighter work day for all and transform with us to the next stage of our growth journey? Bring your brightest version of you and have a brighter work day here.About the TeamThe Network Security team delivers innovative solutions to sophisticated problems, serving as a critical component of the Workday Security organization's mission to guarantee the security and safety of Workday customers, users, and their data. We design, build, and operate critical security controls for customer data environments, overcoming constantly shifting - and exciting - technical challenges to ensure trust in the Workday service. Our team is responsible for operating the systems and controls that we build, advising other Workday business units on ways to securely implement services and infrastructure, and partnering with our information security team to ensure policy compliance and address gaps. We operate data centers and cloud environments across the globe and are constantly tackling new challenges as we seek to improve our network security posture and capabilities.About the RoleAs a network security engineer, you will be responsible for designing and implementing systems and security controls in production environments, developing automation for deployment and validation tasks, partnering with internal customers to drive projects forward, and researching new technologies and opportunities for improving how we operate.This is a technical role that will require collaboration with team members across the world, bringing to bear a strong ability to communicate, detail, and document ideas and work. It's expected to have a taste for challenging yourself - and hopefully the team!You'll be encouraged to improve your skills with training, conferences, and domain-specific workshops. Other members of the team will be available to mentor and support, and there are opportunities for stretch projects outside of normal work responsibilities. You will have the flexibility of a hybrid schedule.About YouBasic Qualifications5+ years of experience related to network, platform, or infrastructure security2+ years crafting, deploying, and operating web application firewall controls (WAF)Experience supporting DDoS detection and IPS in a production environmentExperience with scripting languages(GO or Python) for automationOther QualificationsExperience deploying infrastructure and security systems in AWS and GCPSolid understanding of public cloud network security concepts and hands-on experience documenting and implementing security controls of the sameUnderstanding of application, system, and security threats, attack techniques and mitigating controlsExperience securing large-scale infrastructure on cloud services like AWS, GCP, and AzureExpertise with Ansible, Terraform, and PythonWorkday Pay Transparency StatementThe annualized base salary ranges for the primary location and any additional locations are listed below. Workday pay ranges vary based on work location. As a part of the total compensation package, this role may be eligible for the Workday Bonus Plan or a role-specific commission/bonus, as well as annual refresh stock grants. Recruiters can share more detail during the hiring process. Each candidate's compensation offer will be based on multiple factors including, but not limited to, geography, experience, skills, job duties, and business need, among other things. For more information regarding Workday's comprehensive benefits, please click here.Primary Location: USA.GA.Atlanta Primary Location Base Pay Range: $124,000 USD - $186,000 USD Additional US Location(s) Base Pay Range: $117,800 USD - $207,600 USDOur Approach to Flexible Work With Flex Work, we're combining the best of both worlds: in-person time and remote. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. We know that flexibility can take shape in many ways, so rather than a number of required days in-office each week, we simply spend at least half (50%) of our time each quarter in the office or in the field with our customers, prospects, and partners (depending on role). This means you'll have the freedom to create a flexible schedule that caters to your business, team, and personal needs, while being intentional to make the most of time spent together. Those in our remote "home office" roles also have the opportunity to come together in our offices for important moments that matter.Pursuant to applicable Fair Chance law, Workday will consider for employment qualified applicants with arrest and conviction records.Workday is an Equal Opportunity Employer including individuals with disabilities and protected veterans.Are you being referred to one of our roles? If so, ask your connection at Workday about our Employee Referral process!

Title: Network Security EngineerLocation: RemoteLength: Long termRestriction: W2 or C2CDescription:Interview Type: Either Webcam Interview or In Person *** Very long term project initial PO for 1 year, expect to go for 4+ years *** *** Remote *** may need to visit onsite once in a year at Raleigh NC; expenses will be paid for this*** The manager has a strong preference for local NC candidates. ***Short Description:Responsible for the Weekends and Holidays Midnight to Noon, (12:00 AM 12:00 PM), and two weekdays, 12:00 AM 9:00 AM. Specifically, Fri & Mon12AM 9AMSat & Sun + Holidays12AM noon. Additionally, weekly team meeting on Mon at 9AM.Job Description:Scope Of Work:No. 1: 40% Security Operations and Network Operations (SOC):Responsible for the Weekends and Holidays Midnight to Noon, (12:00 AM 12:00 PM), and two weekdays, 12:00 AM 9:00 AM. Specifically, Fri & Mon 12AM 9AM Sat & Sun + Holidays 12AM noon. Additionally, weekly team meeting on Mon at 9AM.Assist in maintaining the NCAOC Security Operations Center security posture.Responsible on Weekends and Holidays to respond to Network Operations Center priority one circuit outages.Responsible for creating, triaging, updating, and seeing closure of Security Operations Incident, Request, and Enterprise Change Management tickets.Monitors and maintains Firewalls and corresponding management tools (FMC, ASDM), Intrusion Prevention Systems (IPS), Vulnerability Management (VM), Cisco Umbrella domain name security, ISE network Access Control, Posturing, and Profiling, IPsec VPN tunnels, AnyConnect remote users and security module, Third Party Partner Security Incident and Event Manager (SIEM), and other network and cloud security tools.Use tools (Wireshark and interface captures, and log searching) to assist in troubleshooting network, device configuration, and network security related problems.Responsible for firewall cleanup processes, tasks, and learning firewall tools to assist in performing these processes and tasks.Follow and maintain SOC process and technology documentation.Open and work to closure vendor TAC cases, mostly Cisco, to resolve incidents and device issues.Provide reports and metrics for the SOC Supervisor or Operations and Administration Manager as requested.Interface with all other TSD technical teams in initiatives and activities the require Security Operations Center resources.No. 2: 20% Network Security and Cybersecurity:Monitor and respond to Third Party Partner initiated security investigations.Provide support of the established Incident Response Policy from beginning preparation and prevention through post incident activity.Subscribe to and monitor Security Product Advisories and Cybersecurity Organization Bulletins researching and ensuring coverage of security device risks and Common Vulnerability Enumerations (CVE)Update PSIRT/CVE spreadsheet or other report tracking mechanism to report progress and coverage of Security Product Advisories and Cybersecurity Organization Bulletins.Monitor and Maintain the IPS signatures, Block lists, URL reputation lists, and malware file lists to ensure latest security recommendations are implemented.Use monitoring and security diagnostic tools to threat hunt for network and device vulnerabilities, security risks and potential threats.Research trends to assist the Security Operations team in staying up to date on industry best practices and current Cybersecurity trends, tools, techniques, and procedures.No. 3: 30% Network Patching, Upgrading, and Maintenance:Evaluate, plan, and implement network devices, (switches, routers, management tools, etc.) and network security devices and tools (firewalls, IPS, ISE, etc.) upgrades and patches on a monthly and as needed schedule.Coordinates with various TSD teams in the evaluation, planning and implementation of patching, upgrading, and maintenance.Update patching spread sheet to reflect historic and current versioning.Uses software tools to manage patching, upgrading and maintenance of network and security devices (Visio, Microsoft Office, etc.)No. 4: 10% Security Industry and Product Research and TrainingAttend, classes, seminars, webinars, conferences, training sites, and research product documentation, to enhance professional development and to progress in the field of Network and Cybersecurity trends and developments.Use NCAOC provided resources to attain Security Professional Certificates, (Ex. Cisco CCNA routing and switching, CCNA Security, CCNP Security, CISSP)Knowledge, Skills and Abilities:Knowledge:Knowledge of enterprise network security technologies: Cisco FTD and ASA firewalls, IPS, FMC, IPsec tunnels, AnyConnect client, Cisco ISE, Cisco Umbrella, Third Party SIEM, DDI, DNS, VLANS, NAT Cisco Secure Endpoint (AMP), Load Balancing IP/Domain/URL security intelligence sources (Virus Total, TALOS, etc.)Knowledge and or possession of Security Profession Certificates, (Cisco CCNA routing and switching, CCNA Security, CCNP Security, CISSP) is preferred but not required.Knowledge of NCAOC security policy and Criminal Justice Information System (CJIN) policies is preferred but not required.Skills:Skills in enterprise security technology fundamental knowledge of the following, IPsec, IPS/IDS Snort Engine, SIEM, Identity Services Engine (ISE), Vulnerability Management, Access Control/AAA networking fundamentals in the areas of enterprise network topology, routers, switches, servers, NAT, DNS TCP/IP architecture and functionality, Wireshark and interface captures, and log searching to assist in troubleshooting configuration and network security related problems.Abilities:Ability to plan and manage complex projects independently and within a team communicate effectively with users to determine and resolve problems communicate technical information to lay persons interpret and follow established employment and policies produce highly technical documents consider the implications of new technology implementations balance the application and system access business needs of users with network security protections.Required Skills:Configuration and administration of Cisco ASA Firewalls 3 YearsConfiguration and administration of Cisco FTD Firewalls 3 YearsFundamental knowledge of the following, IPsec, IPS/IDS Snort Engine, SIEM, Identity Services Engine (ISE), Vulnerability Management 3 YearsFundamentals in the areas of enterprise network topology, routers, switches, servers, NAT, DNS TCP/IP architecture and functionality 3 YearsWorks independently to accomplish short and long term project goals with clear and concise communication to team members and management 3 Years

Infosys is seeking to hire Network Security Engineer. A Level 3 Engineer with hands-on experience in configuring, managing, and operating Firewalls such as Palo Alto, CheckPoint. The Security Engineer will be responsible for the deploying/rolling out solutions thorough the enterprise and Function as the primary resource on the Network Security team.This role will be responsible for: Product implementation, enhancement, and integration of Firewall and Functions as a liaison between the client and Support. Effective inter-team communication to efficiently achieve organizational IT goals and performance benchmarks in a timely manner. Deploy new sites based off the existing designs and proof of concept in production at other locations. This role will work with an extended on-site and off-site team to develop and maintain a solid network security infrastructure for enterprise clients.Required Qualifications:• Bachelor's degree or foreign equivalent required from an accredited institution. Will also consider three years of progressive experience in the specialty in lieu of every year of education. • U.S. citizens and those authorized to work in the U.S. are encouraged to apply. We are unable to sponsor currently.• Candidate must be located within commuting distance of Dallas, TX or be willing to relocate to the area. This position may require travel in the US.• At least 4 years of experience of Information Technology experience.• At least 3 years hands-on experience in configuring, managing, and operating Palo Alto, CheckPoint • Experience in Product implementation, enhancement, and integration of Firewall and Functions as a liaison between the client and Support • Effective inter-team communication to efficiently achieve organizational IT goals and performance benchmarks in a timely mannerPreferred Qualifications:• Advance Secure Gateway (ASG/SG) Proxies, Management Center, Reporter & Web Security Services• Understands various proxy authentication methods with relation to a domain environment • Strong analytical and product management skills required.• Ability to learn and adapt to changing technology.• Strong technical documentation skills• Availability to work outside of traditional office hours.Key Responsibilities (But not limited to): • Work with an extended on-site and off-site team to develop and maintain a solid network security infrastructure for enterprise clients. • Deploy new sites based off the existing designs and proof of concept in production at other locations.• Proficient on the architecture, design and deployment of these solutions• Ensuring network of the customers continues to operate efficiently with Zero or minimum downtime• Performs deep-dive incident analysis and timely response to the client 2 Verify and Troubleshoot of Palo alto and Checkpoint Firewalls• Responsible for the management and administration of Checkpoint & Palo Alto firewalls deployed across several locations• Develop and enforce firewall policies and procedures to ensure compliance with security and regulatory requirements• Perform regular firewall software upgrades and patch management to maintain system stability and security• Identify gaps in security and propose solutions to increase efficiency and effectivenessThe job entails sitting as well as working at a computer for extended periods of time. Should be able to communicate by telephone, email or face to face.About Us:Infosys is a global leader in next-generation digital services and consulting. We enable clients in more than 50 countries to navigate their digital transformation. With over four decades of experience in managing the systems and workings of global enterprises, we expertly steer our clients through their digital journey. We do it by enabling the enterprise with an AI-powered core that helps prioritize the execution of change. We also empower the business with agile digital at scale to deliver unprecedented levels of performance and customer delight. Our always-on learning agenda drives their continuous improvement through building and transferring digital skills, expertise, and ideas from our innovation ecosystem.Visit www.Infosys.com to see how Infosys (NYSE: INFY) can help your enterprise navigate your next.Infosys is an equal opportunity employer, and all qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, spouse of protected veteran, or disability.

ECS is seeking a Network Security Engineer to work in our Washington, DC office. Please Note: This position is contingent upon contract award.Job Description: Day-to-day triage, investigation, and mitigation of security threats, network incidents as well as short-notice ad hoc work, and see them through to completion. Implementing recommendations for remediation actions and suggestions for implementing best practices, you'll improve standard processes and procedures. Conducting advanced security event detection and threat analysis for complex events. Providing log/network/device analysis and making recommendations for remediation of problematic conditions. Assist in the developing internal and external documentation, such as detailed procedures, playbooks, and operational metrics reports. Staying abreast of the newest technologies and security vulnerabilities enables you to use your knowledge in real time to solve problems. Required Skills: Bachelor or Master Degree in Computer Science or Cyber Security. A minimum of ten (10) years of experience in Network Security with infrastructure and software. Experience designing, engineering and designing solutions with a security mindset. Ability and readiness to work in a fast-paced, rapidly changing, collaborative environment. Strong troubleshooting and analytical skills required. Must have strong critical thinking, complex problem solving, appropriate judgment, and decision-making skills. Experience with major cloud providers mandatory. Possess superior technical aptitude and effective written and verbal communications skills. Proven experience with managing and using DevOps concepts. Certification: CCIE/CCNP Security. Desired Skills: Hands-on experience with SIEM platforms, such as Security Analytics, Splunk, or ArcSight, Firewalls, Intrusion Detection/Prevention Systems, Proxies, Web Applications, and/or Penetration Testing. Hands-on experience implementing Tenable Nessus Security Center, creating customer scans and reviewing findings. Must be familiar with using a network management system to monitor network devices and conduct incident response as needed to rectify issues. Strong network, TCP/IP and endpoint skills. Solid understanding of attack vectors and how systems are compromised. ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3800+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.General Description of Benefits

Title - Network Security EngineerJob Type - Full TimeLocation - King of Prussia, PA (Onsite from day - 1)Mandatory - HP Aruba ClearPass NACResponsible for administrating the HP Aruba ClearPass NAC. Your typical day will involve working with HP Aruba ClearPass NAC and ensure environment is safe and secure from unauthenticated source. The candidate should have a minimum of 5 -6 Years exposure in handling large enterprise network setup of HP Aruba ClearPass Management of the complete HP NAC solution such as refinement of policies, creation of policies, configuration optimization or any changes/modifications to be done for enforcing policies. Job Description - Advanced Knowledge on Firewall platforms (Palo Alto, Email security- any one or two are preferred) running routing protocols and next gen features sure as IPS and Application detection rules.Firewall deployment/configuration experience and troubleshooting application connectivity.Strong understanding of general networking and design (Firewalls, Routing, Load Balancing, OSI Model, TCP/IP, Packet trace and analysis)Understanding of SMTP (RFC 821/5321), TLS, DNS and related standardsIntermediate Linux Sysadmin experience.Must have strong customer handling experience.Must have strong experience in handling the escalations.Experience in managing a CASB solution (MCAS or equivalent).Thorough understanding about Spam, Phishing and DLP concepts.Hands on experience on Email Security solutions (O365 Security or equivalent).Relevant certifications from leading security vendors.Major Duties and ResponsibilitiesExperience on ClearPass deployment and Solution Designing.ClearPass Policy Manager and ClearPass Live Monitoring Posture policies, OnGuard, AD integration, Enforcement Policies Guest and BYOD solution TACACS migration System level configuration (like Clustering, licensing, device insight, certificate management, upgrade, downgrade, Reporting etc) Basic Switching & Routing knowledgeGlobal standards, policies, and procedures relating to ClearPass Liaise with hardware vendors and business partners where required to resolve more challenging issues.The L3 team to submit the RCA for any major issues within its SLA.Routine and specialized tasks to report on the health of the network infrastructure as & when required.Able to handle Incidents, troubleshoot and resolve issues related to Aruba Clear Pass Policy Manager Independently Identifying, analyzing, and resolving technical issues related to Aruba Clear Pass Handling the Clear Pass OnGuard agent issues.SKILLS AND ABILITIES HP Aruba ClearPass NACDesigning and implementing NAC solutions.Understanding of NAC solutions principles and best practices

Network security engineer is part of the Network team responsible for the design, build and run global footprint of network security infrastructure to align with the existing operational support 24x7 high available and compliant environments for on-premises and cloud-based.Works closely with Infrastructure, DevOps, IPSecurity, and other functional area specialists to ensure adequate network security solutions are engineered and deployed across environments, together with other platforms to mitigate network security risks sufficiently to meet business objectives and regulatory requirements. Participate in sessions with internal and external audit teams to delivery status on network security on PCI and PCI DSS compliance activities.Diverse network experience with leveraging on-prem, virtualization, and cloud Amazon Web Services (AWS) to support business and information technology needs. Proven results necessary to be successful in a rapidly changing technology while delivering cost-effective, creative, scalable, resilient, and secure network technology solutions.10+ years network experience with proven success building and delivery world-class compliant network solutionsAbility to handle multiple tasks in a fast-paced environment, and prioritize highly varied work to maintain required productivity levelsMaintain, establish, and present performance and capacity metrics in association to the availability, performance of the environments and workload of the teamShared responsibilities of the network security product change lifecycle from definition through development, delivery, and results assessmentDrive the efficient and effective delivery of our committed strategic plans with high availability, zero trust network access (ZTNA) and edge authenticationExperience with PCI and PCI DSS compliance activities leading sessions with internal compliance teams ensuring zero deviations and vulnerabilities.Maintain, deploy, upgrade, and troubleshoot network security infrastructure solutions including firewalls, load balancers, client VPN, wireless, IP and access layer controlsLead extensive troubleshooting effort including switch, router, and firewall analysisCollaborate with Security, Infrastructure, Compliance and Operations teams to develop consistent technical solutions, implementation activities and support processesParticipate in the design, lifecycle management, and total cost of ownership of network security appliances, applications, and servicesWork closely with Compliance team to review vulnerability assessments and penetration testingPrioritize and manage execution of day-to-day operational network security changes to firewall, IDS/IPS, ACLs and other network security device configurationsParticipate in definition of network security strategies and policiesDevelop and refine network baseline security standards and management proceduresCreation and maintenance of network security diagramsBest practice network security methodologyBusiness Continuity and Capacity ManagementCommunicating and collaboration to executive management and across support teamsWorking knowledge in a mature ITSM environmentSupport the incident and problem responses with network security solutionsSelf-motivated with a hardworking and proactive approachAssist with on-call support as neededTechnical Skills:• Cisco datacenter switches, ASR routers, multicast routing, access points (AP), ISE/NAC• F5 Big-IP GTM, load balancing• SD-WAN/SDN, WAN optimization• Next Gen Firewalls and Zero Trust Network Access (ZTNA)/Network Access Control (NAC)• Proxy/IDS experience/port security/VPN, DNS, DHCP, IPAM

Title - Network Security Engineer Job Type - Full Time Location - Frisco, TX (Hybrid - 3 days onsite, 2 days remote)Responsibilities -Ability to work with very large and complex network.Self-motivated individual and creative thinker who will take ownership of tasks and projects, able to work with the team, and manages tasks effectively and has a proven track record of consist and organized outputs. The ideal candidate will demonstrate an eagerness to understand complex problems and requirements, an aptitude for translating these problems into workable designs and solutions and will possess a keen eye for detail.Mandatory - Firewalls, Cisco ASA, Palo AltoSkills RequiredConfiguring, managing, and troubleshooting NextGen Firewalls; Cisco ASA, Palo Alto firewall is must.Strong working knowledge on Cisco ASA and Palo Alto firewalls.Experience in handling Cisco AnyConnect VPN / SSL VPN.Excellent diagnostic / troubleshooting skills/ proxy ZscalerExperience in managing Cisco ISE, Two Factor authentication (RSA Authentication Manager or SafeNet MFA) is an added advantage.Good Knowledge of TCP/IP Basic knowledge of basic Routing & Switching Concepts.CCNP Security, CCIE Security, Palo Alto ACE, Palo Alto PCNSE certification is an added advantage.Soft SkillsShall have good verbal/written communication skills.Should be willing to work in 24x7 environments.From time-to-time travel opportunities may be assignedIncumbent should carry continual system improvement mind-set and able to demonstrate in work.Client facing technical analysis report and presentation skills.Excellent written and spoken fluency in English.

As a Senior Network Security Engineer, your role will be pivotal in fortifying our defenses and safeguarding digital assets. You'll need a deep understanding of network security, proficiency in deploying NIST 800-171 security controls, and adherence to CMMC level 2 compliance standards for DoD contractors.Responsibilities: * Design and implement secure network architectures to fend off sophisticated threats.* Configure security settings and logging mechanisms to ensure CMMC compliance across Windows and Red Hat OS environments.* Conduct routine security assessments, penetration tests, and vulnerability scans to detect and address potential risks.* Manage and fine-tune firewall and VPN configurations, preferably with expertise in Cisco Firewall and VPN services to meet CMMC requirements.* Utilize SELinux deployment on Red Hat OS to bolster system security.* Monitor network traffic for suspicious activities and respond promptly to security incidents.* Collaborate closely with IT and development teams to seamlessly integrate network security standards into all projects.* Oversee the implementation, documentation, and internal audits of CMMC level 2 compliance, maintaining comprehensive security procedure and policy documentation.Qualifications:* Minimum 7 years of network security experience, with at least five years focused on deploying NIST 800-171 security controls.* Demonstrated track record in implementing, documenting, and auditing CMMC level 2 compliance for DoD contractors.* Solid grasp of network infrastructure and security architectures.* Proficient in managing firewalls, VPNs, and intrusion detection/prevention systems, with experience in configuring CMMC-compliant security settings on Windows and Red Hat OS.* Familiarity with security tools like LogRhythm, Carbon Black App Control, Duo 2FA, and others.* Strong problem-solving skills and effective communication and collaboration abilities.* Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.* Cisco CCNA certification preferred; other relevant certifications such as CISSP, CISM, CCNP Security are advantageous.* Active Secret Clearance.Beacon Hill is an Equal Opportunity Employer that values the strength diversity brings to the workplace. Individuals with Disabilities and Protected Veterans are encouraged to apply.If you would like to complete our voluntary self-identification form, please click here or copy and paste the following link into an open window in your browser: https://jobs.beaconhillstaffing.com/eeoc/Completion of this form is voluntary and will not affect your opportunity for employment, or the terms or conditions of your employment. This form will be used for reporting purposes only and will be kept separate from all other records.Company Profile:Beacon Hill Technologies, a premier National Information Technology Staffing Group, provides world class technology talent across all industries utilizing a complete suite of staffing services. Beacon Hill Technologies' dedicated team of recruiting and staffing experts consistently delivers quality IT professionals to solve our customers' technical and business needs. Beacon Hill Technologies covers a broad spectrum of IT positions, including Project Management and Business Analysis, Programming/Development, Database, Infrastructure, Quality Assurance, Production/Support and ERP roles.Learn more about Beacon Hill Staffing Group and our specialty divisions, Beacon Hill Associates, Beacon Hill Financial, Beacon Hill HR, Beacon Hill Legal, Beacon Hill Life Sciences and Beacon Hill Technologies by visiting www.beaconhillstaffing.com . We look forward to working with you.Beacon Hill. Employing the Future™