*Hybrid, 3 days onsite, 2 days remote*

*We are unable to sponsor as this is a permanent Full time role*

A prestigious company is looking for a Network Security Operations Engineer. This engineer will focus on the design and implementation of network security technologies. This engineer will work with network protocols, analytics, vulnerability scanning, Firewalls, SIEM, etc.

Responsibilities:

• Upgrade network security systems by monitoring security environment; identifying security gaps, and evaluating and implementing enhancements.
• Partner closely with IT or business teams across the company to implement secure solutions that reduce business risk by ensuring confidentiality, integrity, and availability.
• Enhance department and organization reputation by delivering quality results and exploring opportunities to increase value and raise awareness of Information Security Program.
• Document and conform to processes related to security monitoring, patching and incident response.
• Acts as subject matter expert for security incident responses.

Qualifications & Requirements

• Bachelor's degree required, preferably in cybersecurity or other IT-related field
• At least ten (10) years in an IT-related field or at least five (5) years working in cybersecurity required.
• Network topologies, enterprise Servers/storage, virtualization, and data center technology.
• Strong knowledge of network protocols and technologies.
• Experience with Network Detection and Response solutions such Vectra, Cisco Secure Network Analytics (Stealthwatch), Darktrace, ExtraHop, etc. required.
• Experience with network micro-segmentation solutions such as Illumio, Cisco Secure Workload, Guardicore, etc. required.
• Experience with other security-related technologies including Intrusion Prevention/Detection Systems, Firewalls, Content Filtering Technology, Vulnerability Scanning/Management Solutions required.
• Experience using file sandbox technology to detonate and analyze potentially malicious documents and executables preferred.
• Experience investigating security incidents using various security tools including EDR tools such as CrowdStrike, Sentinel One, etc. preferred.
• Experience with Security Information and Event Management (SIEM) such as LogRhythm, Splunk, etc. Experience should include event analysis, log collection/management, alert generation, investigations, and reporting preferred.
• Comptia Security+, Network+, Cybersecurity Analyst
• GIAC Information Security Fundamentals or Security Essentials Certification
• Certified Information Systems Security Professional (CISSP)