Network Security Engineer
Micro IT Global
Darmstadt, Germany
2 days ago
Role details
Contract type
Permanent contract Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
EnglishJob location
Darmstadt, Germany
Tech stack
Computer Security
Computer Networks
DNS
Intrusion Detection and Prevention
Network Security
Regression Testing
Product Software Implementation Methods
Software Requirements Analysis
System Availability
Firewalls (Computer Science)
Firepower
Cisco networks
Job description
- Obsolescence and compliance re-engineering. Re-engineering of legacy network systems with respect to security aspects
- Configuration Support and Audit Identification and implementation of firewall management software Firewall rule audit and corrective actions Identification and implementation of compliance actions
- Intrusion prevention and detection, security monitoring. Implementation & Management of Next Generation Firewalls. Design and implementation of Network security anomaly detection. Identification and implementation of DNS log management and analysis.
- Traffic management and recording. Implementation and management of network flow visibility software. Identification and implementation of software/hardware solution for dynamic traffic sampling and replay.
The foreseen tasks are as follows:
- Security Systems Engineering
- Refinement of the related System Requirements specifications;
- In some cases: Market surveys;
- Benchmark of existing solutions against the specifications.
- Detailed design;
- Implementation;
- Testing, verification and operational validation.
- Security Systems routine maintenance support.
- Day to day preventive maintenance activities;
- Identification of improvements and opportunities;
- Generation of maintenance reports;
- Regression testing;
- Anomaly investigation and processing.
Requirements
The successful candidate should have experience in complex systems requiring a high availability and high security needs in a 24/7 operating environment, preferably with large, distributed, heterogeneous IT environments and in the activities detailed above.
- Experience with CISCO (FirePower and ISE) and Palo Alto Firewalls experience.
- PCNSE or CCIE Security certificate preferable.
- Experience with Software Defined Networking (SDN) would also be an advantage.
- Experience organising, executing, evaluating and following up on information security assessments, as well as identifying, reporting and following up on relevant information security risks.
- Critical thinking with a methodical, proactive and organised approach to work combined with an aptitude for detail and accuracy.
- Appropriate time management and demonstrated ability to work efficiently under pressure / in emergency situations.