Network Security Engineer

SUMMARY:

Responsible for the provisioning, deployment, configuration, and administration of many different pieces of network and security-related hardware and software. These include firewalls, routers, switches, various network-monitoring tools, and virtual private networks (VPNs).

ESSENTIAL DUTIES AND RESPONSIBILITIES Include the following: Other duties may be assigned.

Designing and implementing new network solutions and/or improving the efficiency of current networks

Installing, configuring and supporting network equipment including routers, proxy servers, switches, WAN accelerators, DNS and DHCP

Procuring network equipment and managing subcontractors involved with network installation

Configuring firewalls, routing and switching to maximize network efficiency and security

Maximizing network performance through ongoing monitoring and troubleshooting

Updating network equipment to the latest firmware releases

Reporting network status to key stakeholders

Analyze security systems and seek improvements on a continuous basis

Installs, configures, tests, maintains, updates, and supports phone hardware, operating system, and configuration parameters, to include IP phones and phone system servers, etc.

Makes every effort to maintain "zero downtime" for telecommunications and network equipment by performing organization’s vendors’ and/or industry-prescribed preventative and operational maintenance.

Supervises the installation of all data communications facilities and equipment.

Attends to help desk tickets as available further supporting the IT department in attaining quick resolution to end user/equipment issues.

Monitors performance and availability of all network resources and responds as appropriate. Also performs network modeling, analysis and planning for capacity planning. Based on modeling and analysis, decides which equipment is necessary and its configuration.

Creates and maintains detailed documentation/diagrams for all network hardware, software and configuration parameters.

Proactively researches the latest network security methods, technologies and tools to assure the Bank’s systems are properly protected from cyber-attacks and exploitation of vulnerabilities.

Runs and maintains an internal vulnerability scanner to assure that routers, switches, workstations and servers are as free as possible from known vulnerabilities.

Supports the Bank’s mobile devices as needed.

Implements and maintains effective network security measures in support of company policy, goals, and objectives.

Designs, tests, implements, maintains and supports comprehensive disaster recovery systems, processes, and procedures. Decides where changes should be made to further enhance such systems.

QUALIFICATIONS To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required.

EDUCATION and/or EXPERIENCE

Associates degree (A.A.) or equivalent from two-year college or technical school; and 2-4 years of related experience and/or training; or equivalent combination of education and experience. Additionally, an individual must have a thorough understanding of routing protocols, networking concepts and technologies, such as TCP/IP, DNS, WINS, NAT, Sub netting, and VLANS, Strong background with WAP/WEP, 802.11a-b-g-n, CISCO VOIP and IPSEC. CCNA/CCNP certification preferred. Experience with fiber networks and T1 connectivity is a plus.