Work Location: Maryland,
Duration 1+ year
Description:
****Candidate Must be Local to the DC Area****
Must Have Skills:
1. Strong hands on experience on Forescout NAC Implementation. Preferably FSCE certified Engineer.
2. Strong Hands on Experience in Cisco ISE
3. Good knowledge on Firemon (Preferred not Required)
JOB SUMMARY:
The Sr Network Security Engineer is the subject matter expert in designing and implementing the strategy and platforms for the next-gen operations for all networks including the Property Networks, Datacenter/Cloud Networks, and Corporate Networks. This role will work closely and collaboratively with a matrix team of expert network architects and engineers to drive adoption of DevOps/SRE practices and operating models across all network product towers, and around globe. The Senior Network Security Engineer brings a strong perspective that inspires change and motivates engineers to develop simple solutions to complex problems, driving the engineering and operations for network software development, automation, provisioning, performance management and tools / API's for self-service across the globe. This role is accountable for establishing technical level relationships and partnering with all business disciplines, other MI teams, outsourcing vendors, and external suppliers to define and implement the Network DevOps / SRE roadmap, building and enforcing the standards defined in it. Reporting to the Senior Director of Global Network DevOps/SRE, this key position is accountable to ensure overall requirements by customers and peer delivery and operations groups are met. Accountabilities include, but are not limited to: continental IT executives, property LAN service providers (LSPs), end-user computing services delivery, hosting services, enterprise availability, server, storage, virtualization, inclusive of security/privacy, risk management, and disaster and crisis management. The successful candidate will provide Architecture leadership for all phases of the infrastructure lifecycle from ideation through execution, and ongoing management and support, with specific attention to identifying opportunities for proactive and reactive (self-healing) automation solutions across the network. (S)/He will develop and execute new initiatives to simplify, standardize, optimize, and automate the network designs, tooling, and operations to reduce implementation cycle times, eliminate service downtime, optimize performance, and ensure that all security and compliance requirements are fully governed.
CANDIDATE PROFILE
Education and Experience
Required:
Undergraduate degree in an engineering or computer science discipline and/or equivalent experience/certification
7+ years' experience in information technology including:
o 5+ years' experience in the implementation of WAN, LAN, and datacenter networks with a focus on mission-critical, customer-facing applications and services
Hands-on experience with Forescout Network Access Control (NAC) and the related technologies and protocols, including a working knowledge of 802.1X, DNS, DHCP, and SNMP
Hands on experience with Cisco ISE
Hands on Experience with Firemon.
Hands-on experience troubleshooting RADIUS and TACACS+ protocols
Hands-on Working knowledge of PKI, 802.1X, 802.11x, DNS, DHCP, SNMP, and VPN
Technical knowledge in networking (Cisco and non-Cisco) with an emphasis on software-defined networks (SDN) and leveraging spine & leaf designs, load balancing, firewalls, security design (intrusion detection and prevention), DNS, NTP, Network Tools & Management
Technical knowledge common routing protocols (e.g., OSPF, BGP), IPv6, VPN, etc. across a global distributed network
Hands-on experience with the datacenter fabric platforms (Cisco, Arista, or equivalent)
Hands-on experience with common routing and switching platforms (Cisco, Juniper, HP/Aruba etc.)
Hands-on experience designing, configuring, and operating high-speed campus / office / property networks
Technical knowledge and experience with telco and ISP networks, ensuring diversity and managing availability
Demonstrated experience in delivering written documents detailing network solutions and diagrams
Knowledgeable in modern in modern configuration management tools (Ansible, Chef, Fabric, etc.)
Experience with Cloud Computing platforms (e.g. Amazon AWS, Microsoft Azure, Google Compute Engine)
Technical knowledge in Load Balancing such as ELBs, NLBs, F5 BIGIP
Preferred:
Advanced Degree (e.g., MS, PhD) in Computer Science or other technical discipline or MBA, preferably with a focus on technology
8+ years' experience implementing large, globally distributed network architecture, engineering, and/or operations teams and leveraging next-generation network designs and technologies to support large-scale deployments
Certification in network and/or security technologies (e.g., FSCE, FSAA, CCIE, CCNP, CISSP, etc.)
Experience in researching emerging technologies and trends, standards, and products and synthesizing into clear technology roadmaps and strategies
Strong knowledge of emerging tools, software, applications, and systems for attaining best-in-class IT technology across the enterprise
Excellent problem-solving skills working independently and through leading outcomes for cross functional teams
Excellent understanding of change management, testing requirements, techniques, and tools to ensure high availability of platforms
Strong attention to detail with an ability to operate effectively across multiple priorities
Ability to perform independently as a member of a team and through cross functional initiatives
Proven track record of driving transformation in network technologies, tools, and processes through a data-driven continuous improvement methodology
Demonstrated experience in improving security, stability, reliability, performance, and agility of complex enterprise networks
Strong technical knowledge of foundational networking technologies and solid understanding of the software-defined networking (SDN) ecosystem
Strong understanding of network infrastructure automation, instrumentation, and monitoring platforms and the emerging technologies in this area
Proven experience leading highly effective technical teams through major technology and organizational change
Proven experience driving operational performance through defining and enforcing Recovery Time Objective (RTO) and Recovery Point Objective (RPO) Service Level Agreements (SLAs)
Strong influencing skills and an ability to overcome barriers while driving change
Excellent verbal and written communication skills for a wide range of audiences including executives, business stakeholders, and IT teams
Duration 1+ year
Description:
****Candidate Must be Local to the DC Area****
Must Have Skills:
1. Strong hands on experience on Forescout NAC Implementation. Preferably FSCE certified Engineer.
2. Strong Hands on Experience in Cisco ISE
3. Good knowledge on Firemon (Preferred not Required)
JOB SUMMARY:
The Sr Network Security Engineer is the subject matter expert in designing and implementing the strategy and platforms for the next-gen operations for all networks including the Property Networks, Datacenter/Cloud Networks, and Corporate Networks. This role will work closely and collaboratively with a matrix team of expert network architects and engineers to drive adoption of DevOps/SRE practices and operating models across all network product towers, and around globe. The Senior Network Security Engineer brings a strong perspective that inspires change and motivates engineers to develop simple solutions to complex problems, driving the engineering and operations for network software development, automation, provisioning, performance management and tools / API's for self-service across the globe. This role is accountable for establishing technical level relationships and partnering with all business disciplines, other MI teams, outsourcing vendors, and external suppliers to define and implement the Network DevOps / SRE roadmap, building and enforcing the standards defined in it. Reporting to the Senior Director of Global Network DevOps/SRE, this key position is accountable to ensure overall requirements by customers and peer delivery and operations groups are met. Accountabilities include, but are not limited to: continental IT executives, property LAN service providers (LSPs), end-user computing services delivery, hosting services, enterprise availability, server, storage, virtualization, inclusive of security/privacy, risk management, and disaster and crisis management. The successful candidate will provide Architecture leadership for all phases of the infrastructure lifecycle from ideation through execution, and ongoing management and support, with specific attention to identifying opportunities for proactive and reactive (self-healing) automation solutions across the network. (S)/He will develop and execute new initiatives to simplify, standardize, optimize, and automate the network designs, tooling, and operations to reduce implementation cycle times, eliminate service downtime, optimize performance, and ensure that all security and compliance requirements are fully governed.
CANDIDATE PROFILE
Education and Experience
Required:
Undergraduate degree in an engineering or computer science discipline and/or equivalent experience/certification
7+ years' experience in information technology including:
o 5+ years' experience in the implementation of WAN, LAN, and datacenter networks with a focus on mission-critical, customer-facing applications and services
Hands-on experience with Forescout Network Access Control (NAC) and the related technologies and protocols, including a working knowledge of 802.1X, DNS, DHCP, and SNMP
Hands on experience with Cisco ISE
Hands on Experience with Firemon.
Hands-on experience troubleshooting RADIUS and TACACS+ protocols
Hands-on Working knowledge of PKI, 802.1X, 802.11x, DNS, DHCP, SNMP, and VPN
Technical knowledge in networking (Cisco and non-Cisco) with an emphasis on software-defined networks (SDN) and leveraging spine & leaf designs, load balancing, firewalls, security design (intrusion detection and prevention), DNS, NTP, Network Tools & Management
Technical knowledge common routing protocols (e.g., OSPF, BGP), IPv6, VPN, etc. across a global distributed network
Hands-on experience with the datacenter fabric platforms (Cisco, Arista, or equivalent)
Hands-on experience with common routing and switching platforms (Cisco, Juniper, HP/Aruba etc.)
Hands-on experience designing, configuring, and operating high-speed campus / office / property networks
Technical knowledge and experience with telco and ISP networks, ensuring diversity and managing availability
Demonstrated experience in delivering written documents detailing network solutions and diagrams
Knowledgeable in modern in modern configuration management tools (Ansible, Chef, Fabric, etc.)
Experience with Cloud Computing platforms (e.g. Amazon AWS, Microsoft Azure, Google Compute Engine)
Technical knowledge in Load Balancing such as ELBs, NLBs, F5 BIGIP
Preferred:
Advanced Degree (e.g., MS, PhD) in Computer Science or other technical discipline or MBA, preferably with a focus on technology
8+ years' experience implementing large, globally distributed network architecture, engineering, and/or operations teams and leveraging next-generation network designs and technologies to support large-scale deployments
Certification in network and/or security technologies (e.g., FSCE, FSAA, CCIE, CCNP, CISSP, etc.)
Experience in researching emerging technologies and trends, standards, and products and synthesizing into clear technology roadmaps and strategies
Strong knowledge of emerging tools, software, applications, and systems for attaining best-in-class IT technology across the enterprise
Excellent problem-solving skills working independently and through leading outcomes for cross functional teams
Excellent understanding of change management, testing requirements, techniques, and tools to ensure high availability of platforms
Strong attention to detail with an ability to operate effectively across multiple priorities
Ability to perform independently as a member of a team and through cross functional initiatives
Proven track record of driving transformation in network technologies, tools, and processes through a data-driven continuous improvement methodology
Demonstrated experience in improving security, stability, reliability, performance, and agility of complex enterprise networks
Strong technical knowledge of foundational networking technologies and solid understanding of the software-defined networking (SDN) ecosystem
Strong understanding of network infrastructure automation, instrumentation, and monitoring platforms and the emerging technologies in this area
Proven experience leading highly effective technical teams through major technology and organizational change
Proven experience driving operational performance through defining and enforcing Recovery Time Objective (RTO) and Recovery Point Objective (RPO) Service Level Agreements (SLAs)
Strong influencing skills and an ability to overcome barriers while driving change
Excellent verbal and written communication skills for a wide range of audiences including executives, business stakeholders, and IT teams