Siem - Network Security Consultant Job in Principal Financial Services

Indicative years of experience: 7 to 12 years

Role Description:

Position Title: Consultant

Business Unit: Information Security & Risk

Position Purpose: The Network Security consultant will provide direction & execution of global network security initiatives for and be an active member of cyber defense engineering team. The successful candidate will be highly collaborative and possess broad technical skills with the ability to implement security changes across a large organization

Reporting Relationship:

This role reports to Delivery Manager / Sr. Delivery Manager / Solution Architect / Sr. Solution Architect

Essential Functions: In order of importance, list the essential functions (9 maximum) of this position and estimate the percentage of time spent on each (for non-officer). Begin with an action verb and describe an end result. Note: Accountabilities transfer directly to the performance appraisal form.

1. Recognized as a go to person who is looked upon to take the solution lead in critical situations

2. Ability to understand new developments in cyber defensive technologies required to protect, detect and respond to cyber threats and attack. Technologies include SIEM, & infrastructure (firewall, IPS/IDS, proxy, network capture).

3. Ability to perform critical analysis and resolve issues independently

4. Mentor analyst (T2/T3) on the technology aspect to assist in a better impact analysis Sound Knowledge on Network Protocols & hands on experience in Network security design and architecture.

5. Demonstrates ability to effectively influence people and projects

6. Ability to communicate effectively with multiple levels and constituents

7. Strong ability to analyze and resolve cyber security issues.

Education:

Graduate from any stream preferably Computer Science or Engineering

Experience:

Cyber security professional with real-world attack simulation design experience to assess and significantly improve the effectiveness of an entire information security program

Role Description

The Network Security consultant will provide direction & execution of global network security initiatives for global enterprise environments. The successful candidate will be highly collaborative and possess broad technical skills with the ability to implement security changes across a large organization

Required Skills

1. Hands-on engineering experience in following : Snort IPS, Sumologic, carbon black, Qradar, NSM, Suricata.

2. Familiarity with DoE & NIST security requirements

3. Experience with secure network architectures, identity and access management principles, encryption technologies, DNS, SOA, database and web applications

4. Hands-on usage of Virtualization Technologies from VmWare, Microsoft, Cisco, HP, Red Hat as applied to network virtualization and application of network-security to these technologies

5. Experience with firewall and intrusion detection / prevention technologies.

6. Detailed knowledge of traditional and cloud-based Network and Network Security Infrastructure components including Network Security scanning, audit-compliance and SIEM solutions.

7. Broad background in the following areas: computer / OS security, network security, hardware security, cloud security.

8. Familiar with CISCO Network infrastructure device (routers, switches, firewall)

9. Detailed understanding of one of the commercially available IaaS solutions AWS, Azure, Open Source options and how they can be leveraged for Enterprise Cloud Solution requirements

10. Demonstrated ability to proactively analyze and solve complex problems.

11. Excellent communication skills including both verbal and written

Key Responsibilities

1. Provide advisory services to various teams within Cyber Security & IT

2. Successful delivery of Cloud Network and Network Security Assessment (as isstate summary, derivation of optimal cloud-based target state), Design and Build Cloud Services, with creation of Cloud Network and Network Security Operation Runbooks, and training of resources needed to deliver day-to-day cloud-operations

3. Define strategy and technology roadmap for Network Security Architecture, assess, and deliver technical solutions, for enterprise initiatives

4. Provide technical and full end to end project management aligned to roadmap of cyber defense engineering team

5. Lead projects and initiatives with broad scope and high impact to the business and be a recognized expert in Network Security

6. Partner with multiple teams to architect technology solutions that deliver cyber security controls for global sites

7. Deploy cyber security controls for protecting critical IT assets placed at global sites including acquisitions

8. Help define reference architecture for securing Acquisition & Integration (A&I) sites globally

9. Execute and prioritize work to meet deadlines. Evaluate new threats, solutions and the impact on IT and Business operations

enterprise network security process standards

10. Work with cyber defense engineering teams to define repeatable reference network security architectures

11. Determine network security requirements and prepare cost estimates by evaluating business strategies and requirements

12. Conduct network security and risk assessments, identifying security gaps and implementing enhancements

13. Plan and coordinate the implementation of network security systems by working closely with cross-functional teams

14. Prepare preventive and reactive measures, providing technical support and completing documentation

Added advantages

1. Knowledge of current threat landscape of various cyber security domains, focusing on security engineering & design

2. Knowledge of network security tools, techniques and procedures.

3. Experience with Agile and DevOPS as applied to Cloud network security and network-security solutions and migration projects

4. Offensive Security Certified Professional (OSCP), CCIE(Security), CISSP, GDSA ( SEC530: Defensible Security Architecture and Engineering)