Job for Network Security & Infosec Firewall Engineer
Brooklyn, NY
12 months
Posted on: 01/04/2022
Job Description:

In support of Information Security Firewall modernization, the ITCS Network Engineering resource will advise DoITT InfoSec on technology infrastructure design and architecture model; generate conceptual, logical, and physical network architectures, test plans, simulate network scenarios, if needed, and validate the policies prior to implementation. The Network Engineering resource will, configure and implement network policies and routing protocols to ensure the design and delivery over CityNet WAN as well as inside DMZ architectures that conforms DOITT’s Network engineering’s Best Practices templates.  This network consultant will aid InfoSec in the deployment of Palo Alto and Checkpoint Firewalls and will be a single point of contact for InfoSec in the new firewalls deployment. 

Responsibilities:

DESIGN

1. Participate in weekly meetings

2. Assign new Network ports for firewalls

3. Assign link IP addresses

4. Discussion with Network Architects

5. Ensure to follow DOITT’s Enterprise Network Engineering’s Best practices templates

6. Plan for route migrations. 

 

IMPLEMENTATION

7. Submit BOM Build for installing new switches for the firewall migrations.

8. Submit incident tickets for new switches commissioning.

9. Configure ports, configure New switches and apply the base templates configs, integrate the switch into production network. (New switches deployment for FW Migration)

10. Open Pro-Active Cases with Cisco during implementation change windows

11. Follow up with Cisco on pending cases and troubleshooting and identify the root cause on failed implementations as needed

12. Cutover support.

13. Submit INC for new link monitoring

14. Configure routing protocols (OSPF, BGP, ISIS etc.) and routing policies (MPLS, VRF etc.) as needed for the migrations in DOITT managed network switches and routers

15. Appropriately create build/design documentation using Visio

Requirements:

  • Minimum 12 years of IP Network Engineering experience
  • Hands on experience with Cisco routers and switches
  • Extensive experience maintaining and troubleshooting large enterprise and / or ISP type network
  • Extensive experience with Layer3 MPLS VPN technologies, MP-BGP, mvpn, is-is
  • Participate in the Change Management process including creating new change request, reviewing submitted change forms, verify submitted change requests
  • Expertise in designing resilient network policies for high availability, redundancy and scalability 

Copyright @2021 RighTalents. All Rights Reserved by RightTalents LLC