Sr Network Security Engineer
NourNet
Total years of experience :10 years, 2 Months
• Deploy, implement, configure, and manage Security solutions includes F5, Palo Alto, Fortinet, cisco ASA/FTD firewalls.
• Lead projects in Enterprise & Private/Public cloud includes delivering planning of mid to large scale enterprise DC environment, working end to end from integrator contact, HLD and LLD design documentation and some hand-on implementation.
• Configure, manage, monitor, and analyze IDS/IPS Signatures Attacks, Firewalls log, Systems, Applications and Security Event Log for comprehensive security monitoring and vulnerability management.
• Design, recommend and built solutions and mitigation to address security issues, risk, and vulnerabilities.
• Leading efforts in developing/improving process, procedures, and documentation for all aspects of security
• Responsible to work closely with key process owners to implement the agreed remediation actions
• Identify and recommend gaps and improvements to business processes
• Work closely with key process owners to implement the agreed remediation actions
• Oversee Security Service projects to ensure products are developed with security standards and practices
• Prepares system security reports by collecting, analyzing, and summarizing data and trends.
• Implement product upgrades, patches, and capacity expansions
• Provide technical support for activities that improve the security posture.
• Provide technical assistance for investigation and analysis of security alerts
• Build and maintain relationships with internal teams, vendors, and third parties
• Providing operational support and project implementation for network infrastructure, including Routing & Switching, Security, Voice, and Wireless.
• Designing VPN, IPsec Solution with policy encryption algorithm.
• Managing Firewall Health and Availability Monitoring.
• Team leader on Designing network infrastructure in line with company standards.
• Designing a firewall rule, web filtering, application filtering and QOS.
• Configuring and maintaining Routing protocols in their specific attributes.
• Configuring Redundancy Protocol such as IP SLA, HSRP, VRRP, GLBP and VSS.
• Administrating of Firewall for Site-to-Site VPN Configuring and end users’ VPN such as IPsec, SSL VPN.
• Daily monitoring of Resource Pool, Alerts, Alarms.
• Configuring and troubleshooting HA and load balancing.
• Daily Checking in firewall of unwanted web sites and blocked if suspicious thru IPS.
• Pro- actively monitor the data center systems uptime and connectivity to ensure system availability to prevent any down time, and coordinate problem resolution with vendor second level support groups.
• Responsible for network operations related to routing, switching & security.
• Analyzing and evaluating network security threats and vulnerabilities
• Supporting in the implementation and documentation of network policies, standards, and guidelines
• Promoting network policies, standards, and procedures through adherence in daily operational activities
• Participating in on-call responsibilities in support of 24 x 7 x 365 production environments.
• Coordinating with hardware and software vendors to maintain operations, diagnose issues and resolve problems
• Performing responsibilities of creating implementation plans for network-related projects
• Monitor networks to ensure security and availability to specific users.
• Ensure network connectivity throughout a company LAN/WAN infrastructure.
• Network level: WAN and LAN connectivity, routers, firewalls, and security
• Remote access solution support: VPN, Terminal Services, and Citrix
• Remote monitoring and management of system alerts and notifications
• Participate in the administration and maintenance of the remote monitoring and management system: update agent scripts, respond to alerts, monitor dashboard, and periodic system review
• Document maintenance for all computer systems and network infrastructure
• Communication with customers as required: keeping them informed of incident progress, notifying them of impending changes or agreed outages
• Be available for other engineers and coach them to resolution
• Install and support LANs, WANs, network segments, Internet, and intranet systems.
• Install and maintain network hardware and software.
• Analyze and isolate issues.
• Monitor networks to ensure security and availability to specific users.
• Evaluate and modify system's performance.
• Determine network and system requirements.
• Maintain integrity of the network, server deployment, and security.
courses: •Cisco Certified Specialist - Security Core (CCNP) •Cisco Certified Specialist- Securing Network with Cisco Firepower (SNCF) •Fortinet’s Network Security Expert certification (NSE4) •Cisco Certified Specialist - Enterprise Core (CCNP) •Cisco Certified Specialist - Enterprise Advanced Infrastructure Implementation (CCNP) •Huawei Certified Networking Associate (HCNA) •Aruba Certified Mobility Associate (ACMA)