Security Engineer

The Security Engineer designs, implements, and maintains secure network access solutions for our customer's (Palo Alto) enterprise environment. Will work closely with network, cloud, and IT operations teams to optimize performance, troubleshoot issues, and ensure compliance with organizational security standards., * Follow all Secur-Serv requirements, policies, procedures, and management directions

• Migrate customers from legacy firewall technologies to Palo Alto Networks platforms
• Build custom security policies and application signatures, configured for our client's needs
• Take every opportunity to maintain proficiency and increase the level of knowledge on Palo Alto Networks SASE products, software, and services
• Provide after-hours and weekend on-call support as needed to support maintenance activities
• Analyze logs and events from the solution to perform initial troubleshooting and issue identification
• Work with our Technical Assistance Center to troubleshoot and diagnose support cases
• Maintain the Company's solution and provide mentorship on code upgrades and best practices
• Ensure client needs are met and deliverables produced on time according to specified project deliverables and scope

• Bachelor's degree in Computer Science, Electrical Engineering, Computer Engineering or a related technical field or equivalent background or military experience
• Minimum 4 years' experience in professional services
• PCNSE, CCNA, CCNP, and/or CCIE certification
• Project leadership experience - ability to drive organizations and resources to complete required tasks in service of end goals
• Detailed technical experience in the installation, configuration, and operation of high-end firewall appliances
• Strong understanding of LAN and WAN networking protocols and technologies, including switching, routing, firewalls and security solutions
• Strong TCP/IP networking skills
• Strong dynamic routing skills (BGP, OSPF, etc)
• Experience working with Remote Access VPN solutions, IPSEC, PKI & SSL, TCP/IP, Authentication Protocols (LDAP, RADIUS, SAML, etc.)
• Experience working with URL filtering
• Experience working with Proxy and SSL Decryption
• Experience working with Windows and MAC OS including (debugging, editing Windows Registries, Plist, etc.)
• Experience with one or more of these vendors: Palo Alto Networks NGFW, Cisco, Checkpoint, Juniper (Netscreen), Fortinet products, Symantec/ Blue Coat, Zscaler
• Good troubleshooting skills and ability to use tools like tcpdump & Wireshark
• Application Delivery expertise - L7 SLB / Global SLB / Traditional Link LB
• Application Performance Monitoring expertise - Response time metrics, Application identification
• Packet capture analysis / fault isolation and remediation
• In-depth knowledge and deployment experience of SD-WAN and Remote Access technologies
• Network Security expertise (IPS/IDS, ZBFW, NGFW)
• In-depth IP Routing protocol expertise (BGP, OSPF, EIGRP)
• Implementation of Legacy WAN solutions (MPLS, Leased Line, Frame Relay, Satellite, Internet VPN, ECMP, DMVPN)
• Global-scale network design
• Demonstrable Virtualization experience (VMware/Microsoft/Citrix/Linux KVM)
• Ability to work in a cross-functional environment which involves coordination with different teams such as Sales/Pre Sales/Product Management/Engineering
• Good written and verbal communication skills with confirmed ability to communicate with senior leaders and technical peers
• Desire to learn on your feet and thrive on the bleeding edge of networking.

PREFERRED SKILLS/EXPERIENCE

• Experience with Prisma Access
• Experience with public clouds like AWS/GCP/Azure
• Scripting and automation development experience

PHYSICAL/MENTAL REQUIREMENTS

• Sit Frequently at a desk
• Frequent fine hand and finger movements (keyboard, writing, mouse movement)
• Continual close visual acuity for reading
• Hearing and Speaking for communication within and outside of company.
• May be required to lift/push/pull up to 10 pounds for set up/movement of office equipment,

• Mental Requirements - must be able to consistently: o Learn new tasks, o Remember Processes, o Maintain focus, o Complete tasks independently o Make timely decisions in the context of a workflow, o Ability to communicate effectively, o Able to adhere to process protocol in a timely manner

Secur-Serv is a leading managed services provider of IT, print, and hardware services, with a security focus at the core of every service. Secur-Serv provides nationwide, on-site service to businesses of every size, focusing on the financial, manufacturing, transportation, and healthcare industries. Why Secur-Serv? Join Secur-Serv because we are committed to professional and personal growth, working with employees to develop a defined career path and helping them achieve their career goals with internal and external training. We empower our employees to innovate and be a part of solutions that improve processes, systems, and transformation. We recognize and provide an environment where each and every employee can make an impact.. * Explore new training opportunities through our LinkedIn Learning platform and partners to develop your skills and career. * Free wellness and mental health resources via our Employee Assistance Program (EAP) available which is all employees for help with life's stresses and up to three visits with a professional.