Job Summary:
As a Network Security Specialist at Squarepoint, you will play a critical role in safeguarding the global network infrastructure, spanning regional data centers, offices, co-locations, and public cloud providers. Your primary responsibility will be to design, implement, and maintain robust security controls and services that protect the organization's network infrastructure.
This will involve leading and participating in various projects, including the installation, monitoring, and optimization of network and security hardware, software, and communication links.
Main Duties & Responsibilities:
1. Design and deploy comprehensive network security solutions that align with corporate security standards and requirements.
2. Lead project delivery and management efforts, collaborating with internal stakeholders and external vendors to ensure successful project outcomes.
3. Implement, support, and maintain network security infrastructure across all Squarepoint locations, including offices, data centers, and co-location sites, with occasional travel required.
4. Provide advanced technical L3 support to troubleshoot and resolve performance and security issues, ensuring prompt resolution and minimal downtime.
5. Identify opportunities for process improvements and implement automation solutions to increase efficiency, reduce manual effort, and enhance overall security posture.
6. Develop innovative and creative solutions to address operational security challenges, analyzing complex problems, and providing proactive recommendations for improvement.
7. Ensure the ongoing maintenance and security of systems by applying patches, updates, and performing routine maintenance tasks to prevent vulnerabilities and downtime.
8. Develop, maintain, and update standard operating procedures and technical guides for security solution implementations, ensuring knowledge sharing and consistency across the organization.
Preferred Qualifications:
9. Degree in Network Engineering, Computer Science, or related Information Technology discipline
10. CCNP certification or higher (CCIE preferred)
11. Minimum 7 years of experience in network Engineering and project delivery, with a strong track record of successful project execution.
12. Strong foundation in multiple security technologies, including network security, next-generation firewalls, network access control, micro-segmentation, and security architecture.
13. Proven experience with Fortinet and/or Palo Alto security solutions, with expertise in design, deployment, and management.
14. Knowledge and hands-on experience with Cisco ISE, including technical deployment and configuration.
15. Advanced knowledge of routing and switching protocols, including:
16. Unicast protocols: OSPF, BGP, NAT, IPSEC, and GRE
17. Multicast protocols: PIM, RP, MSDP, and IGMP
18. Switching protocols: QoS, HSRP/VRRP, and VPC/MLAG
19. Proficiency in scripting and automation, with Python as the preferred language.
20. Strong understanding of network diagnostics, monitoring, alert management, and performance tools, with hands-on experience in troubleshooting and optimization.
21. Familiarity with cloud-based solutions, such as AWS, GCP, and Azure, as well as micro-segmentation tools like Illumio, is a plus.
22. Excellent communication and interpersonal skills, with the ability to work under pressure and maintain attention to detail.
23. Experience with open-source network scanning tools and certifications like PCNSA, CISSP, or similar, is desirable.