Network Security Engineer

Initial contract till 31-12-2024 - 

Possible extension: Yes - 

40 hours per week 

Assignment context and description of activities
     
•    Good understanding of Palo Alto Network firewalls and CISCO FTD, and ISE including configuration, rule management, and troubleshooting. Familiarity with feature such as Advanced threat protection and SSL decryption, TACACS.
•    Expertise and understanding on VPN (RA, S2S) Configuration, ACL / NAT configuration Panorama and Cisco ISE access management.
•    Good understanding of Web application firewalls including SSL configuration, Rules management. OWASP top ten attacks.
•    Provide preventative maintenance, troubleshooting and quickly resolve problems to ensure infrastructure and application stability.
•    Review vulnerability scan output and assess update configuration / OS upgrade can be used to mitigate attacks.
•    Documenting changes, run books, SOP, Diagrams, etc.
• Tools like SNOW, SolarWinds and Zenoss will be added advantage.
•    Incident management, Change Management for different severity levels and following escalation matrix for ensuring SLA adherence.
•    Communicating effectively to all stakeholders on a regular basis.
•    Implement and operate security solutions (DLP – Microsoft Purview, Email Security - Safesend, Web Gateway EDR – Forcepoint, app whitelisting (Carbon black) and Endpoint Security – Microsoft Defender Suite, CrowdStrike), SIEM/Anomaly Detection (Splunk/MS Sentinel).
•    Monitor networks and computer system for security breaches, through use of endpoint security devices. 
•    Ensure that endpoint security systems are configured and maintained in accordance with security best practices and industry standards.

With the following results (SMART)
     
•    Good understanding of Palo Alto Network firewalls and CISCO FTD, and ISE including configuration, rule management, and troubleshooting. Familiarity with feature such as Advanced threat protection and SSL decryption, TACACS.
•    Expertise and understanding on VPN (RA, S2S) Configuration, ACL / NAT configuration Panorama and Cisco ISE access management.
•    Good understanding of Web application firewalls including SSL configuration, Rules management. OWASP top ten attacks.
•    Provide preventative maintenance, troubleshooting and quickly resolve problems to ensure infrastructure and application stability.
•    Review vulnerability scan output and assess update configuration / OS upgrade can be used to mitigate attacks.
•    Documenting changes, run books, SOP, Diagrams, etc .
• Tools like SNOW, SolarWinds and Zenoss will be added advantage.
•    Incident management, Change Management for different severity levels and following escalation matrix for ensuring SLA adherence.
•    Communicating effectively to all stakeholders on a regular basis.
•    Implement and operate security solutions (DLP – Microsoft Purview, Email Security - Safesend, Web Gateway EDR – Forcepoint, app whitelisting (Carbon black) and Endpoint Security – Microsoft Defender Suite, CrowdStrike), SIEM/Anomaly Detection (Splunk/MS Sentinel).
•    Monitor networks and computer system for security breaches, through use of endpoint security devices. 
•    Ensure that endpoint security systems are configured and maintained in accordance with security best practices and industry standards.