The Network Security Architecture & Design (NSAD) team is an Enterprise Technology infrastructure department focused on “Protecting the Brand” through architecture and design of network segmentation, authentication and security compliance support services.
The Network Architect plays a key role in the development of network security design plans and the development of reference architectures and standards for secure networking across the enterprise.
The position is responsible for understanding and interpreting global business and technical security requirements in order to apply advanced next generation firewalling, network authentication, encryption, access control and intrusion prevention technologies for global consumption. This includes participation in discovery, documentation, validation / refinement of forward-looking solutions (ex. Global Network Access Control, Network Authentication Systems and next-gen integrated Firewall and IPS strategy) while considering opportunities for re-use of standard solutions and technologies.
Responsibilities:
Develops and communicates network security infrastructure design plans, future strategic and tactical plans to aid in decision making activities that affect key network environments and initiatives.
Researches and recommends next generation network security technologies & products (ex. 802.1x port authentication, RADIUS, Application Firewalling, Intrusion Prevention Systems)
Collaborates with suppliers and Storage, Hosting, Facilities, IT Security and Client Services towers on network security solutions for development of advanced services to meet overall protection requirements. Designs customized solutions as required to support Business objectives.
Meets with vendors to discuss product strategy offerings, addresses technical issues/deficiencies and influences new products and services to meet growing and changing requirements.
Minimum Qualifications:
Bachelor’s Degree in STEM related discipline
10 years’ experience in an enterprise environment that operates 7×24 services
5-10 years on the job experience with Python
Demonstrated experience with securing Enterprise Network Security Architectures (multi security zone environments, including Cloud Service provider environments). Experience developing designs to help protect diverse networking/infrastructure/application technologies including networking solutions that balance security posture, performance and availability.
Extensive knowledge and understanding of networking and security technologies/architectures including: TCP/IP protocol suite, IPSEC, TLS, SSL, client and site-to-site VPNs, RADIUS, TACACS+ and X509 Certificate authentication.
Proficient in Firewall technologies (Palo Alto) and Aruba ClearPass Policy Manager RADIUS, TACACS and Guest systems.
Experience in developing secure networks for physical and cloud virtualized environments across networked components (compute, storage, network) including experience with protecting both physical server and hypervisor driven virtual server implementations.
Experience with PCI, SoX and other security audit processes, evidence gathering, observed fieldwork and development/management of remediation plans used in resolution of findings.
Experience with vulnerability and security control/exception management.
Experience with development and composition of automated tasks and processes for network provisioning, security defense and maintenance/compliance reporting.
Experience with Internet facing architectures from a security standpoint and familiarity with Denial of Service prevention mechanisms.
Experience with implementation of access control and authentication mechanisms such as 802.1x and EAP-TLS/TTLS. Experience with overall NAC architectures inclusive of NAD, RADIUS, PKI and Multi-factor authentication mechanisms.
Demonstrated technical knowledge of UNIX, VMWARE, Cloud Service Provider security infrastructure, application analysis (detailed packet capture analysis), network design, network management systems and troubleshooting techniques.
Preferred Qualifications:
15 years’ experience in an enterprise environment that operates 7×24 services
Palo Alto Network certification
ArubaOS for ClearPass certification
CISSP certification
SANs specific security training
API integration experience
#LI-HS1
#disneytech
br{display:none;}.css-58vpdc ul > li{margin-left:0;}.css-58vpdc li{padding:0;}]]> POSITION SUMMARY The Information Technology Support Technician supports the effective, efficient, and secure operations of...
Apply For This Jobbr{display:none;}.css-58vpdc ul > li{margin-left:0;}.css-58vpdc li{padding:0;}]]> Director, IT Operations Join a member-driven leader in a challenging, collaborative and hybrid work environment...
Apply For This Jobbr{display:none;}.css-58vpdc ul > li{margin-left:0;}.css-58vpdc li{padding:0;}]]> Local Banking/Credit Union in need of Junior ISA.This position is a Hybrid role, so you...
Apply For This Jobbr{display:none;}.css-58vpdc ul > li{margin-left:0;}.css-58vpdc li{padding:0;}]]> Overview: Turn 5 is one of the largest and fastest growing e-commerce retailers in the...
Apply For This Jobbr{display:none;}.css-58vpdc ul > li{margin-left:0;}.css-58vpdc li{padding:0;}]]> Company: Security Services Holdings LLC dba Protos Security Job Title: IT Specialist Reports to: Vice...
Apply For This Jobbr{display:none;}.css-58vpdc ul > li{margin-left:0;}.css-58vpdc li{padding:0;}]]> ***Direct Hire*** JOB SUMMARYResponsible for the overall planning, organizing and execution of all IT functions...
Apply For This Job