Network Security Engineer

Responsibilities:
• You will be a key player on a team responsible for all aspects of Network Security. You may be a SME in some domains, but are expected to have full professional knowledge of security concepts and company objectives to resolve a wide range of issues in effective and sometimes creative ways, in all of the following domains. As an advanced engineer, you are expected to do these things with little technical direction and with only general guidance on new assignments:
• Firewalls and network filters, in both Enterprise, Stores, and cloud networks.
• Intrusion Prevention policies
• Site-to-site and remote-access VPN connectivity
• Network Access Control
• Authentication, Authorization and Accounting (to include multi-factor authentication)
• Web access proxy servers and URL filtering
• DNS Security
• Threat research, vulnerability remediation, and creation of compensating controls
• Network Security policy creation, exception documentation and approval
• Provide suggestions to team lead/manager in creating your professional development and training plan.
• Prioritize taskings and projects assigned based on importance to accomplishment of business objectives. Occasionally assist junior teammates with maintaining proper prioritization.
• Solve diverse and complex issues where analysis of situations and data requires in-depth evaluation of identifiable factors. Provide escalation support and technical guidance to teammates in areas where you are a SME.
• Work on projects assigned to you, in effort to advance partnership opportunities between Network Security team and other business areas. 
• Work with senior engineers to define network security requirements for current and future state end-to-end architectures and platforms to advance security controls and the security posture of the business.

Certification/Licenses
• Must have: At least one entry-level vendor certification (with non-entry-level preferred) in the Network Security arena (Palo Alto PCNSA/PCNSE preferred, Cisco CCNA/CCNP Security, Juniper JNCIA-SEC/JNCIS-SEC, etc.) or equivalent experience
• Preferred: At least one entry-level vendor-neutral certification in the Information Security arena (GICF, GSEC, CISA, CEH, etc.)