Job ID# 10134 – Posted 10/27/22 – Remote, Downey CA

A Security Engineer serves as the security engineer of complex technology implementations in a product-centric environment; is comfortable with bridging the gap between legacy development or operations teams and working toward a shared culture and vision; works to ensure developers create the most secure systems while enhancing the privacy of all system users; and has experience with white-hat hacking and fundamental computer science concepts. The Security Engineer will perform security audits, risk analysis, application-level vulnerability testing, and security code reviews; develop and implement technical solutions to help mitigate security vulnerabilities; and conduct research to identify new attack vectors.

Security Engineers will possess knowledge and experience in safeguarding sensitive data from cyber-attacks.

– Cisco ASA Firewalls engineering and operations in multi-context mode experience
– Cisco FirePower Firewalls engineering and operations experience
– Cisco Firewall Management Console (FMC) engineering and operations experience
– Cisco Command Line Interface (CLI) engineering and operations experience
– Cisco ACL reviewing, editing and maintaining experience
– Cisco Site-to-Site (S2S) Virtual Private Networking (VPN) experience with focus on double/twice NAT architecture
– Firepower Intrusion Prevention Systems (IPS) engineering and operations experience
– Palo Alto Firewalls experience (is secondary and does not replace Cisco experience required)
– Flexible schedule to support out of hours upgrades/patches/etc. and rotating on-call schedule with team mates
– Ability to quickly learn and find technical information quickly to resolve problems
– Ability to be on camera for all meetings, working sessions, etc., as requested
– Ability to work with outside vendors for additional support tasks

This classification must have a minimum of ten (10) years of experience with developing and implementing technical solutions to help mitigate security vulnerabilities.

– Firewall engineering and operations with primary experience in Cisco FWs
– Daily tasks include configuring, managing, maintaining, and troubleshooting
– Cisco ASA and FirePower firewalls
– Experience in configuring, managing, maintaining, and troubleshooting ACLs, S2S VPNs, BGP connections, IPSec, routing, optimizing/tuning, etc. in multi-context mode
– Experience using Command Line Interface (CLI) for most tasks
– Experience using the Firewall Management Console (FMC)
– Configures, manages, maintains, and troubleshoots Cisco FirePower Intrusion Prevention Systems (IPSs)
– Works with the Datacenter Engineers and Security teams to add routes, troubleshoot complex networking issues, make recommendations on configurations, etc.

This classification requires the possession of a bachelor’s degree in an IT-related or Engineering field. Additional qualifying experience may be substituted for the required education on a year-for-year basis.

This position focuses on both data center firewall engineering and operations, and the secure deployment and monitoring of these environments. The ideal candidate will be very comfortable administering Cisco infrastructure including both CLI and FMC interfaces to accomplish their goals. Ideal candidate will be comfortable working in fast-paced critical support systems environments, and will have the ability to quickly learn and adapt to unfamiliar technologies or situations.

Please send your resume and any additional information to our recruitment team at recruitment@nexlogica.com