Our client within the financial industry is in need of a Network Security Engineer to join their team. Qualified candidates MUST be US Citizens with the ability to obtain a US Government issued security clearance.
This is a contract to hire opportunity.
Onsite/Hybrid: 3 days in office & 2 days remote
Overview
The Network Security Engineer is primarily responsible for configuring, deploying and maintaining secure network infrastructures to protect organizational data and resources from internal and external threats. This role involves monitoring networks for security vulnerabilities, investigating incidents, and deploying security solutions to mitigate attacks. This role also includes ensuring the high availability of networking security infrastructure and developing processes and procedures for ongoing management of the network environment. The ideal candidate possesses a strong technical background, analytical skills, and a proactive approach to network defense.
Responsibilities
- Design, configure, and manage secure network architectures, including firewalls, VPNs, IDS/IPS, and other security appliances
- Maintain Next Generation firewalls and monitor/manage consoles or systems
- Manage all firewalls at our client, including firewall rules to ensure alignment with IT Security Policies
- Interact and negotiate with vendors, outsourcers, and contractors to secure network products and services
- Support the deployment of workstations, network devices, servers, printers, scanners, firewalls, encryption systems, and all host security systems
- Monitor network traffic and system logs to identify suspicious activities and potential threats
- Respond to and investigate security incidents, performing root cause analysis and implementing corrective actions
- Enforce network security policies, procedures, and best practices
- Manage and update network access controls, including user authentication and authorization mechanisms
- Collaborate with IT teams to ensure secure integration of new technologies and systems
- Maintain up-to-date knowledge of the latest cybersecurity trends, threats, and technologies
- Create and/or maintain network design diagrams and documentation
- Create and/or maintain network service monitoring, alerting, and responding to incidents
- Coach and guide team members with less experience
- Maintain excellent communication with internal and external parties
- Participate in rotational "on call” schedules
- Remain cognizant of and adheres to our client's policies, procedures, and regulations pertaining to the Bank Secrecy Act (BSA)
Qualifications
Required
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent experience)
- Minimum 5 years proven experience in configuring and administering on-premises and cloud based Next Generation Firewalls (NGFW) and IDS/IPS systems such as; Cisco Firepower, Fortinet FortiGate, and Microsoft Azure
- Minimum 5 years proven experience in network security engineering or a related IT security role
- Strong understanding of networking protocols, network routing, operating systems, and security technologies (e.g., firewalls, proxies, SIEM, IDS/IPS)
- Understanding of network security applications and systems such as e-mail gateway, web gateway, firewalls, and proxies
- The ability to assist in authoring and reviewing security policy, standards, and procedures
- Excellent problem-solving, analytical, and communication skills
- Ability to work independently and collaboratively in a fast-paced, dynamic environment
- Strong attention to detail and commitment to maintaining confidentiality and integrity of sensitive information
- Effective oral and written communication skills
- Ability to interact effectively with all levels of the organization and/or with vendors
- Ability to obtain and maintain a secret level security clearance
- A standard 8-hour shift between the core hours of 7:00 AM and 5:00 PM is required to support our client's operations
- Occasional after-hours or on-call work may be required to respond to security incidents or perform system upgrades.
- Ability to work effectively on-site in our Herndon, VA headquarters and equally effectively remotely
- Network Security Engineers typically work in hybrid work environment consisting of three days on site at our client's Corporate Headquarters in Herndon, VA, and 2 days remote.
- Hybrid work is at management discretion and typically granted after an initial onboarding period
Preferred
- Professional certifications such as CCNA, CISM, CCNP Security, or similar
Nesco Resource offers a comprehensive benefits package for our associates, which includes a MEC (Minimum Essential Coverage) plan that encompasses Medical, Vision, Dental, 401K, and EAP (Employee Assistance Program) services.
Nesco Resource provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.
| #LI-KB1 |