Security Engineer - Firewall

Job # 10134 – Posted 10/27/22 – Remote, Downey CA

A Security Engineer serves as the security engineer of complex technology implementations in a product-centric environment; is comfortable with bridging the gap between legacy development or operations teams and working toward a shared culture and vision; works to ensure developers create the most secure systems while enhancing the privacy of all system users; and has experience with white‑hat hacking and fundamental computer science concepts.

The Security Engineer will perform security audits, risk analysis, application‑level vulnerability testing, and security code reviews; develop and implement technical solutions to help mitigate security vulnerabilities; and conduct research to identify new attack vectors.

• Knowledge and experience in safeguarding sensitive data from cyber-attacks.

• Cisco ASA Firewalls engineering and operations in multi‑context mode experience
• Cisco Fire Power Firewalls engineering and operations experience
• Cisco Firewall Management Console (FMC) engineering and operations experience
• Cisco Command Line Interface (CLI) engineering and operations experience
• Cisco ACL reviewing, editing and maintaining experience
• Cisco Site-to-Site (S2S) Virtual Private Networking (VPN) experience with focus on double/twice NAT architecture
• Firepower Intrusion Prevention Systems (IPS) engineering and operations experience
• Palo Alto Firewalls experience (is secondary and does not replace Cisco experience required)
• Flexible schedule to support out‑of‑hours upgrades/patches/etc. and rotating on‑call schedule with teammates
• Ability to quickly learn and find technical information to resolve problems
• Ability to be on camera for all meetings, working sessions, etc., as requested
• Ability to work with outside vendors for additional support tasks

• Minimum of ten (10) years of experience with developing and implementing technical solutions to help mitigate security vulnerabilities.

• Firewall engineering and operations with primary experience in Cisco FWs
• Daily tasks include configuring, managing, maintaining, and troubleshooting
• Cisco ASA and Fire Power firewalls
• Experience in configuring, managing, maintaining, and troubleshooting ACLs, S2S VPNs, BGP connections, IPSec, routing, optimizing/tuning, etc. in multi‑context mode
• Experience using Command Line Interface (CLI) for most tasks
• Experience using the Firewall Management Console (FMC)
• Configures, manages, maintains, and troubleshoots Cisco Fire Power Intrusion Prevention Systems (IPSs)
• Works with the Datacenter Engineers and Security teams to add routes, troubleshoot complex networking issues, make recommendations on configurations, etc.

Requires a bachelor’s degree in an IT‑related or Engineering field. Additional qualifying experience may be substituted for the required education on a year‑for‑year basis.

This position focuses on both data center firewall engineering and operations, and the secure deployment and monitoring of these environments. The ideal candidate will be very comfortable administering Cisco infrastructure including both CLI and FMC interfaces to accomplish their goals. They will be comfortable working in fast‑paced, critical support systems environments, and will have the ability to quickly learn and adapt to unfamiliar technologies or situations.

• Seniority level:
  Mid‑Senior level
• Employment type:
  
  Full‑time
• Job function:
  Information Technology

Please send your resume and any additional information to our recruitment team at